last executing test programs:

4.46451799s ago: executing program 0 (id=2010):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x40000)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0x40a85323, &(0x7f0000000280)={{0x9, 0x5}, 'port1\x00', 0x20, 0x34, 0xe1d, 0xa1, 0x7, 0x6, 0x4, 0x0, 0x3})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x20, 0x10, 0x439, 0x1, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9801}}, 0x20}}, 0x40080)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000008000000000018000380140003801000018004000300080001"], 0x44}}, 0x20008000)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x44, r2, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_OURS={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x8, 0x4, '\x00\x00\x00\x00'}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x44}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffc1d}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r4, 0x0, 0x2ca}, 0x18)
r5 = gettid()
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000006"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r7, 0x0, 0x1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r6}, &(0x7f0000000800), &(0x7f0000000840)}, 0x20)
execve(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
r9 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_int(r9, 0x29, 0x18, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r8, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
process_vm_writev(r5, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x6, &(0x7f0000000080)=ANY=[@ANYBLOB="18020000b4b2000000000000000000008510000001000000950000000000000085000000ad00000095"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x95, &(0x7f0000001300)=""/149, 0x41000, 0xa}, 0x94)

4.303821106s ago: executing program 0 (id=2016):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001040)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffefc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x10000}, 0x18)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x4b0, 0x0, 0x11, 0x148, 0x340, 0x0, 0x450, 0x2a8, 0x2a8, 0x450, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x88000000, 0x3, 0x7}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0x98, 0xd8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x4f, 0x7, "72f6daeff0a9c6294e211d2d88fe6dcff5d0e552201da3b7a1fdb30dcb59"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x510)

4.272370209s ago: executing program 0 (id=2019):
sched_setscheduler(0x0, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x28, 0x10, 0x1, 0x70bd25, 0x25dfdbf9, {0x0, 0x0, 0x0, 0x0, 0x48815, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000)
r3 = getpid()
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newlink={0x38, 0x10, 0xffffffffffffffff, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x37c13, 0x51a23}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @sit={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_PMTUDISC={0x5}]}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x20040040)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SHOW_PORTS(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, 0x0, 0xe01, 0x70bd2d, 0x25dfdbfc}, 0x1c}}, 0x24048800)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r9, 0x1, 0x70bd27, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x30)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0x1ac81b, 0x0, 0x0, 0x0, 0x1000000}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8, 0x0, 0x0, 0x1010000}, @initr0, @exit, @alu={0x6, 0x0, 0x3, 0xa, 0x0, 0x0, 0x300}, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x6}, 0x94)

4.254946431s ago: executing program 2 (id=2020):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
wait4(0x0, 0x0, 0x7d583c6aba8751cb, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000006000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x8}, 0x94)
syz_mount_image$ext4(&(0x7f0000000880)='ext4\x00', &(0x7f0000000940)='./file0\x00', 0x722a8970a0b3a625, &(0x7f0000000900), 0x1, 0x869, &(0x7f0000000000)="$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")

3.611462184s ago: executing program 1 (id=2026):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
epoll_create1(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0xfffffffffffffff7}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x121e42)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x60, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff9ce}, 0x94)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_ro(r4, &(0x7f00000002c0)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000000)={0x0, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1f}}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000000580), 0x5, 0x504, &(0x7f0000002580)="$eJzs3c9rXFsdAPDvzCR5SZtn33uKvFfBFirUHzSTH0gTFcSVuiiIBTcKNSbTWDPphMykNqFgqrsuXIiiIC7c+xe4sStLQVwrbl1Ji9YIVSpcmTtz00kyk041mfHlfj4wnXvnTOd7ziTfkzPnnjs3gNy62PynEDEZEb+PiHOt3f1PuNi62312b6l5K0SSXP9rIX1ecz97avb/zkbETkSMR8RXvxjxrcLhuPWt7dXFarWy0d4vN9bWy/Wt7Su31hZXKiuV2zPzVxcW5qfnZheOra0PfvidB9d+/eWxXz3/wZNHP/rtb5rVmmyXdbbjOLWaPhpvdzw2EhGfO4lgQ1Bqt2di2BXhv9L8+X0wIi6l+X8uSulPsz8vTrRmwElLkiT5d/JGr+KdBDi1iukYuFCciojWdrE4NdUaw38ozhSrtXrjUzdrm7eXW2Plt2K0ePNWtTLd/qzwVowWmvsz6fbL/dkD+3MR6Rj4x6WJdH9qqVZdHmxXBxxw9kD+/6PUyn8gJ/r/yA+cNvIf8kv+Q37Jf8gv+Q/5Jf8hv+Q/5Jf8h/yS/5Bfnfmfncj15pDqAgzWUX//xwZYD2CgvnLtWvOWZOe/L9/Z2lyt3bmyXKmvTq1tLk0t1TbWp1ZqtZX0nJ21V71etVZbn/l0bN4tNyr1Rrm+tX1jrbZ5u3EjPa//RmV0IK0C+vH2hYd/LETEzmcm0lt0/MmXq3C6JUkhhn0OMjAcpWF3QMDQOPQH+fUan/F7fkkY8P7W5St694yf7Vn0+Vg/keoAA1A8qvDF48FVBBi4y+85/gd5Zf4f8sv8P+TXK8b4hgeQA0fN/0f7Wn5d9Tv///z16gOcvCPn/4FTbbLL9b+SJPnemx3X7pqOiA9ExB9Ko29k1/oCToPiXwrt8f/lcx+bPFg6VvhnOgcwFhHf/fn1n95dbDQ2ZpqP/23v8cbP2o/PDqP+QG/7Z/iyPM3yGADIr91n95ay2yDjPv1CaxHC4fgj7bnJ8XQEc2a3sG+tQuGY1i7s3I+Id7vFL7Svd9468nFmt3Qo/jvt+0LrJdL6jqTXTR9M/Pc64n+0I/75//ldgXx42Ox/prvlXzHN6djLv/39z+QxrY/O+r9szXVn/Kz/K/Xo/y70GePbv/h+t8O76WLvp/cjznftf7N442msg/GbdbvcZ/wn3/jah3uVJb9svU63+JnmVrmxtl6ub21fuZXVYv7qwsL89NzsQjmdoy5nM9WHffbd3z3qFb/Z/rYe7f/TofZPtOv0iT7b/6+PPP76xSPif/xS99+/d9L7A+9/kuzV4ZN9xv/77J+/2ausGX+5x/tf7BY/stKIuT7j13/yJecOA8D/kfrW9upitVrZ6LIx2rvIhg0bg94YiQEGfVXPsTOYDgo4MS+Tftg1AQAAAAAAAAAAAPrVa/Xvw2NcTjzsNgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnAb/CQAA//9AntRF")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0)
fdatasync(r6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(r6, 0x5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
prctl$PR_MCE_KILL_GET(0x22)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000700), 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r1, 0xc0a85320, &(0x7f0000000340)={{0x80}, 'port0\x00', 0x24, 0x1b1878, 0x4, 0x2, 0x1, 0x0, 0x4, 0x0, 0x0, 0x3})
close(r1)

3.536545862s ago: executing program 3 (id=2027):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x40000)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0x40a85323, &(0x7f0000000280)={{0x9, 0x5}, 'port1\x00', 0x20, 0x34, 0xe1d, 0xa1, 0x7, 0x6, 0x4, 0x0, 0x3})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x20, 0x10, 0x439, 0x1, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9801}}, 0x20}}, 0x40080)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000008000000000018000380140003801000018004000300080001"], 0x44}}, 0x20008000)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x44, r2, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_OURS={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x8, 0x4, '\x00\x00\x00\x00'}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x44}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffc1d}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r4, 0x0, 0x2ca}, 0x18)
r5 = gettid()
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000006"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r7, 0x0, 0x1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r6}, &(0x7f0000000800), &(0x7f0000000840)}, 0x20)
execve(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
r9 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_int(r9, 0x29, 0x18, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r8, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
process_vm_writev(r5, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x6, &(0x7f0000000080)=ANY=[@ANYBLOB="18020000b4b2000000000000000000008510000001000000950000000000000085000000ad00000095"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x95, &(0x7f0000001300)=""/149, 0x41000, 0xa}, 0x94)

3.227893072s ago: executing program 3 (id=2029):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
timer_create(0x2, 0x0, &(0x7f0000bbdffc))
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x10000)

3.226915072s ago: executing program 4 (id=2030):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001040)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffefc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x10000}, 0x18)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x4b0, 0x0, 0x11, 0x148, 0x340, 0x0, 0x450, 0x2a8, 0x2a8, 0x450, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x88000000, 0x3, 0x7}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0x98, 0xd8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x4f, 0x7, "72f6daeff0a9c6294e211d2d88fe6dcff5d0e552201da3b7a1fdb30dcb59"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x510)

3.201250435s ago: executing program 2 (id=2031):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
epoll_create1(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0xfffffffffffffff7}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x121e42)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x60, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff9ce}, 0x94)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f00000002c0)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000000)={0x0, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1f}}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000000580), 0x5, 0x504, &(0x7f0000002580)="$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")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
fdatasync(r5)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(r5, 0x5)
prctl$PR_MCE_KILL_GET(0x22)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000700), 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r1, 0xc0a85320, &(0x7f0000000340)={{0x80}, 'port0\x00', 0x24, 0x1b1878, 0x4, 0x2, 0x1, 0x0, 0x4, 0x0, 0x0, 0x3})
close(r1)

3.200075935s ago: executing program 3 (id=2032):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, &(0x7f00000001c0)="b69840", 0x3, 0x2004c005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
rt_tgsigqueueinfo(0x0, 0x0, 0x7, 0x0)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r4, 0xe19, 0x70bd26, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x8e, 0x2}, {0xc, 0x8f, 0x401}, {0xc, 0x90, 0x4237}}]}, 0x54}, 0x1, 0x0, 0x0, 0x24008010}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000001640), r5)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="09000000000000000000020000001400018005000200"], 0x28}}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB], 0x68}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syncfs(0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r9, &(0x7f0000004200)='t', 0x1)
sendfile(r9, r8, 0x0, 0x3ffff)
sendfile(r9, r8, 0x0, 0x7ffff000)

3.119866383s ago: executing program 4 (id=2033):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="701500003c0007010300000000000000047c0000040042800c0001"], 0x1570}, 0x1, 0x0, 0x0, 0x20000000}, 0xc800)

3.066775478s ago: executing program 4 (id=2034):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x200, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000a00)=ANY=[@ANYBLOB="1400000010007c0000000000006000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000010900020073797a310000000008000a40fffffffc400000000e0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c000180050001"], 0xa4}}, 0x40)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c00048028000180"], 0x80}, 0x1, 0x0, 0x0, 0x44800}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=ANY=[@ANYBLOB="38000000180001000000000000000000022000000000000600000000060015000400000014001680100008800c"], 0x38}}, 0x0)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r6}, &(0x7f0000000380), &(0x7f00000003c0)}, 0x20)
unshare(0x64000600)

2.94647177s ago: executing program 1 (id=2035):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0)
listxattr(0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[], 0x48)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000001, 0x5d031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = msgget$private(0x0, 0x0)
msgsnd(r1, &(0x7f0000000340)=ANY=[@ANYRES16], 0x2000, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000100)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x402, '\x00', 0x0, 0x0, 0x0, 0x0, 0x3}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000005c0)='sched_switch\x00', r3}, 0x10)
msgrcv(r1, &(0x7f0000001080)={0x0, ""/1}, 0x2000, 0x2, 0x3000)
msgctl$IPC_SET(r1, 0x1, &(0x7f00000004c0)={{0x0, 0xee00, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xb, 0x6f76, 0x7, 0x0, 0x1, 0x8, 0x7f, 0x3})
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x4000c00)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
msgsnd(r1, &(0x7f0000000040)={0x2}, 0x8, 0x800)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000002500)=@raw={'raw\x00', 0x3c1, 0x3, 0x5f0, 0x3b8, 0xffffff80, 0x178, 0x3b8, 0x178, 0x520, 0x22b, 0x258, 0x520, 0x258, 0x2034, 0x0, {[{{@uncond, 0x1d, 0x398, 0x3b8, 0x340, {0x1e0002a8, 0x7203000000000000}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x1a, 0x64, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xa}]}}, @common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "e22e50439abb066265e088a63e13552b8b2fec412753ac647d17d2ebca69d17a9722bd2f5be411676d5993fb4cc74168209fb9f43b63bab2a88206d7dd8158d916b865d0f713f772c59ad6e6b572e9a6c498fb6459888a281e8c071a9a7229f9fe02cb8e9ba7637a2591a5367c770c87034734be6eda195ce135517efa85da52"}}]}, @unspec=@NOTRACK={0x20}}, {{@ipv6={@loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'veth1_to_bridge\x00', 'geneve1\x00'}, 0x0, 0x100, 0x168, 0x0, {}, [@common=@ah={{0x30}}, @common=@ipv6header={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x12, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x650)
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000540)={0x10, 0x70, 0x100000}, 0x20)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r6, 0x0, 0x0, 0x22004001, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_config_ext={0x9, 0x4}, 0x4, 0x0, 0x10000, 0x7, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
r7 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r7, 0x1, 0x8, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket(0x2, 0x80805, 0x0)

2.705688004s ago: executing program 2 (id=2036):
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x3, 0x1000002, 0x0, 0xff, "d4e9002b2c000000ff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup(r1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x5, 0x208, 0xd9}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r4}, 0x18)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffff"], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000000)='kmem_cache_free\x00', r6, 0x0, 0x7fffffff}, 0x18)
sendto$inet6(r5, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x8, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0x194, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x164, 0x4, 0x0, 0x1, [{0x160, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x150, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8}, @NFTA_MATCH_NAME={0xb, 0x1, 'policy\x00'}, @NFTA_MATCH_INFO={0x138, 0x3, "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"}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_COMPAT={0x4}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x1bc}, 0x1, 0x0, 0x0, 0x10}, 0x4000800)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x3)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'veth0\x00', <r9=>0x0})
setsockopt$packet_add_memb(r8, 0x107, 0x1, &(0x7f00000004c0)={r9, 0x3, 0x6}, 0x10)
r10 = socket$nl_route(0x10, 0x3, 0x0)
r11 = socket$packet(0x11, 0x2, 0x300)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000010000000000000000000018010000", @ANYRES32, @ANYRES32=r11], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r12}, 0x10)
r13 = io_uring_setup(0x4d3f, &(0x7f0000000200)={0x0, 0xca6a, 0x40, 0x3, 0x6})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r13, 0xb, 0x0, 0x0)
setsockopt$packet_add_memb(r11, 0x107, 0x1, &(0x7f0000000100)={r9, 0x1, 0x6, @remote}, 0x10)
sendmsg$nl_route_sched(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000440)=@getchain={0x24, 0x11, 0x1, 0xfffffffe, 0x2000001, {0x0, 0x0, 0x0, r9, {0x7, 0xa}, {0xd, 0xc}, {0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x20048054)

2.54172617s ago: executing program 1 (id=2037):
getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r0, &(0x7f0000000040)={0x23, 0xfd, 0x0, 0x2}, 0x1d)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
ioctl$SIOCPNENABLEPIPE(r0, 0x89ed, 0x0)
r2 = socket$inet6(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00'}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r4}, 0x10)
sendto$inet6(r2, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)

2.473101437s ago: executing program 1 (id=2038):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000300)={0x0, 0x10, &(0x7f0000000280)=[@in={0x2, 0x4e24, @private=0xa018100}]}, &(0x7f0000000080)=0x10)
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000300)={'vxcan1\x00', <r4=>0x0})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r5}, 0x10)
bind$can_raw(r3, &(0x7f0000000000)={0x1d, r4}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000003c0)={0x0, 0xe, &(0x7f00000001c0)={&(0x7f0000000040)=@getchain={0x24, 0x11, 0x839, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r8, {0x7, 0x6}, {0xffff, 0x10}, {0x1}}}, 0x24}}, 0x0)
r9 = socket$netlink(0x10, 0x3, 0xb)
close(r9)
socket$can_bcm(0x1d, 0x2, 0x2)
r10 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000054850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r11}, 0x10)
r12 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000c80)={'ip6gre0\x00', <r13=>0x0})
sendmsg$nl_route_sched(r12, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000001240)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x4000000, {0x0, 0x0, 0x0, r13, {0x0, 0x1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x1, 0x0, 0x1fc, 0x0, 0xfffffc80, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3f, 0x0, 0x0, 0x2, 0xffffffff, 0x2, 0xfff, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x2, 0x1000, 0xfffffffc, 0xd, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0xbab, 0x0, 0x272, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x2, 0x0, 0x800, 0x4, 0x4, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x0, 0xb97, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x3, 0x5e, 0xfffffffc, 0x8, 0x0, 0x0, 0x400000, 0x8, 0x4, 0xc, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x4, 0x6, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xb3c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x400, 0x0, 0x0, 0xd79, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x100, 0x0, 0x8, 0xfffffffd, 0x4000000, 0x0, 0x0, 0xfffffffe, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x8, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x1, 0x0, 0x0, 0x0, 0xfffc, 0x6}, {0xff}, 0x0, 0x7f}}]}}]}, 0x45c}}, 0x0)

2.308539543s ago: executing program 3 (id=2039):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="f91bbf5c6d54923af37e434c"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket(0x10, 0x2, 0x0)
getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="4800000010000305ff810000fddbdf2500000000", @ANYRES32=r2, @ANYBLOB="174800002d000200280012800a00010063616e"], 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x60040, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x1ffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'syzkaller0\x00', <r5=>0x0})
setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000100)={r5, 0x2, 0x6}, 0x10)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x47, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r7}, 0x10)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4}, 0x0, 0x0)

2.251891198s ago: executing program 2 (id=2040):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x40000)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0x40a85323, &(0x7f0000000280)={{0x9, 0x5}, 'port1\x00', 0x20, 0x34, 0xe1d, 0xa1, 0x7, 0x6, 0x4, 0x0, 0x3})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x20, 0x10, 0x439, 0x1, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9801}}, 0x20}}, 0x40080)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000008000000000018000380140003801000018004000300080001"], 0x44}}, 0x20008000)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x44, r2, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_OURS={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x8, 0x4, '\x00\x00\x00\x00'}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x44}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffc1d}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r4, 0x0, 0x2ca}, 0x18)
r5 = gettid()
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000006"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r7, 0x0, 0x1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r6}, &(0x7f0000000800), &(0x7f0000000840)}, 0x20)
execve(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
r9 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_int(r9, 0x29, 0x18, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r8, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
process_vm_writev(r5, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x6, &(0x7f0000000080)=ANY=[@ANYBLOB="18020000b4b2000000000000000000008510000001000000950000000000000085000000ad00000095"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x95, &(0x7f0000001300)=""/149, 0x41000, 0xa}, 0x94)

2.160260777s ago: executing program 4 (id=2041):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r2=>r0, {0x2}}, './file0/file0\x00'})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r3}, 0x10)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
openat(r4, &(0x7f00000000c0)='./file0\x00', 0x6a1c2, 0x50)
faccessat(r4, &(0x7f0000000000)='./file0\x00', 0x5)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000300)={&(0x7f0000000940)=@ipv4_newnexthop={0x44, 0x68, 0x10, 0x70bd2b, 0x25dfdbfc, {0x2, 0x0, 0x0, 0x0, 0xa}, [@NHA_RES_GROUP={0xc, 0xc, 0x0, 0x1, [@NHA_RES_GROUP_IDLE_TIMER={0x8, 0x2, 0x8000000}]}, @NHA_FDB={0x4}, @NHA_ENCAP={0xc, 0x8, 0x0, 0x1, @ILA_ATTR_HOOK_TYPE={0x5, 0x9, 0x1}}, @NHA_FDB={0x4}, @NHA_GROUP={0xc, 0x2, [{0x2, 0xdb}]}]}, 0x44}}, 0x48004)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0xb)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10)
r7 = io_uring_setup(0x5ea4, &(0x7f0000019080)={0x0, 0xdf4, 0x2, 0x2, 0x32a, 0x0, r2})
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000340)={@cgroup, 0xffffffffffffffff, 0x2}, 0x20)
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x3a, 0x0, 0x7fff8000}]})
r9 = fsopen(&(0x7f00000001c0)='devpts\x00', 0x0)
setrlimit(0x7, &(0x7f0000000400)={0x0, 0xf})
fsconfig$FSCONFIG_CMD_CREATE(r9, 0x6, 0x0, 0x0, 0x0)
fsmount(r9, 0x0, 0xf)
close_range(r8, 0xffffffffffffffff, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
sendmmsg$inet(r0, &(0x7f0000002980)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000640)="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", 0x224}], 0x1}}, {{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000e00)="61506eb07117164bdb4ee7ac0a137512738cac7ddf83039c6483d715bcafc5c4f7feff3c5f7c8d0773bb7447d33297aaf2f9e2b9dc15752fdb623d0008f673f7a04836a22be782e61cc35bdea0abd69a4726afa107f95b8922be17921a894c90310251c043c6ffce40aa34acd2ddccc0255708feca96f2563c7318556f4ef40d02bb5cb1", 0x84}, {&(0x7f0000000a00)="449f6aed247d1971", 0x8}, {&(0x7f0000000f80)="da272d98f0f8962c15832ad9fc3fe69499698607da01faf3742d6a27555ae47f444bad1ea77509fed4623598addf131c04811469c810db02e91468121899", 0x3e}, {&(0x7f0000000040)}, {&(0x7f0000001040)="cc5a4dbac0affd0a979c63ea8352d608a51fc8625318716ddf62b7752be4540c4ac7d344c53a3ad28313abc2437b60b03c0e587cafcf9a435bf90c618351f70a828238fdf90bc5d36c7d614b82552649954e0185662defd28f78", 0x5a}], 0x5}}], 0x2, 0x480e0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

1.986621224s ago: executing program 2 (id=2042):
prlimit64(0x0, 0xe, &(0x7f0000000440)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x80004e27}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300000000002085000000"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x0, 0x0})
signalfd(0xffffffffffffffff, 0x0, 0x0)
inotify_init1(0x800)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000300)='qrtr_ns_server_add\x00', r5, 0x0, 0x7}, 0xfffffe17)
socket(0xa, 0x3, 0x3a)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="e532c92731ca3b8c7d203096e7f8f7b48c7ad17214ac3740cf50c73592f5116b86061df0a7aad65c4bb133f2d05e3c784c39cdf1bc75fc23a1fd11bf1797658c0278d89de8dfcb5745be43eaf44b8f1eb40474f37ae669343fdf72d9b9334c2ef3f046806a30", @ANYRES16=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="74010000", @ANYRES16=r8, @ANYBLOB="11060000000000000000010000000800050001000000200108803c0000801400040002000000ac1e00010000000000000000240001000000000000000000000000000000000000000000000000000000000000000000e0000080a400098028000080060001000a0000001400020020010000000000000000000000000001050003000100000028000080060001000a00000014000200ff010000000000000000000000000001050003000100000028000080060001000a00000014000200ff010000000000000000000000000001050003000300000028020080060001000a00000014000200ff0100000000000000000000000000010500030000000000240001000000000000000000000000000000000000000000000000000000000000000000140004000200000000000000000000000000000024000300000000000000000000000000000000000000000000000000000000000000000014000200776731"], 0x174}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sys_enter\x00', r6}, 0x18)
symlink(0x0, &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file1\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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")
lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f00000003c0))

1.535426289s ago: executing program 1 (id=2043):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x4000000)
r2 = getpid()
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newlink={0x20, 0x10, 0xffffffffffffffff, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x37c13, 0x51a23}}, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x20040040)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180), r6)
sendmsg$TIPC_CMD_SHOW_PORTS(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r7, 0xe01, 0x70bd2d, 0x25dfdbfc}, 0x1c}}, 0x24048800)
r8 = getpid()
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r10, 0x1, 0x70bd27, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r8}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x30)
sendmsg$DEVLINK_CMD_RELOAD(r6, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0xb0, r10, 0x100, 0x70bd2d, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x2}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r2}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x2}}]}, 0xb0}, 0x1, 0x0, 0x0, 0x7fab206199fef1ae}, 0x801)
r11 = syz_io_uring_setup(0x3b64, &(0x7f00000003c0)={0x0, 0x15e3, 0x80, 0x2, 0x25f}, &(0x7f0000000500), &(0x7f0000000540))
syz_io_uring_setup(0x5099, &(0x7f0000000580)={0x0, 0xbe79, 0x200, 0x3, 0x2ed, 0x0, r11}, &(0x7f0000000600), &(0x7f0000000680))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0x1ac81b, 0x0, 0x0, 0x0, 0x1000000}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8, 0x0, 0x0, 0x1010000}, @initr0, @exit, @alu={0x6, 0x0, 0x3, 0xa, 0x0, 0x0, 0x300}, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x6}, 0x94)

1.295770213s ago: executing program 3 (id=2044):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="701500003c0007010300000000000000047c0000040042800c0001"], 0x1570}, 0x1, 0x0, 0x0, 0x20000000}, 0xc800)

1.247670298s ago: executing program 4 (id=2045):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, &(0x7f00000001c0)="b69840", 0x3, 0x2004c005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
rt_tgsigqueueinfo(0x0, 0x0, 0x7, 0x0)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r4, 0xe19, 0x70bd26, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x8e, 0x2}, {0xc, 0x8f, 0x401}, {0xc, 0x90, 0x4237}}]}, 0x54}, 0x1, 0x0, 0x0, 0x24008010}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000001640), r5)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="09000000000000000000020000001400018005000200"], 0x28}}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB], 0x68}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syncfs(0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r9, &(0x7f0000004200)='t', 0x1)
sendfile(r9, r8, 0x0, 0x3ffff)
sendfile(r9, r8, 0x0, 0x7ffff000)

779.715264ms ago: executing program 0 (id=2046):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/vmstat\x00', 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00'})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000000)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x80400, 0x0)
ioctl$TUNSETIFF(r3, 0x400454da, &(0x7f00000002c0)={'bond0\x00', 0x4000})
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'nicvf0\x00', 0x1432})
syz_io_uring_setup(0x49d, &(0x7f0000000080)={0x0, 0x79ae, 0x400, 0x7ff9, 0x32c}, &(0x7f0000000140)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x6000, @fd=r0, 0x6, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
fcntl$dupfd(r3, 0x406, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000180), 0xffffffffffffffff)
r6 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={0x0, 0x9}, 0x110d41, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x7}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = syz_open_procfs(0x0, &(0x7f00000005c0)='cgroup\x00')
lseek(r7, 0x10001, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r8}, &(0x7f0000000180), &(0x7f00000001c0)=r6}, 0x20)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9, 0x0, 0x3}, 0x18)
r10 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r10, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB="02030003100000002cbd7000fcdbdf2502000900080000001c0000000000000005000600000070000a0000000000000000000000000000000000000000000001020000000000000002000100000000000000070c0000000005000500000000000a00000000000000000000000000000000000000000000010700000000000000"], 0x80}, 0x1, 0x7}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)

779.126334ms ago: executing program 2 (id=2047):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
lsm_get_self_attr(0x64, &(0x7f0000000040), &(0x7f0000000000)=0x101, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r1}, 0xc)
lsm_get_self_attr(0x64, &(0x7f0000000040)={0x0, 0x0, 0xdf, 0xbf, ""/191}, &(0x7f0000000140)=0x1c, 0x1)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000d40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021100011800c000100636f756e74657200400100000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000001401038010010080080003400000000203"], 0x1d4}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

778.239664ms ago: executing program 3 (id=2048):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
lsm_get_self_attr(0x64, &(0x7f0000000040), &(0x7f0000000000)=0x101, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r1}, 0xc)
lsm_get_self_attr(0x64, &(0x7f0000000040)={0x0, 0x0, 0xdf, 0xbf, ""/191}, &(0x7f0000000140)=0x1c, 0x1)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000d40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021100011800c000100636f756e74657200400100000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000001401038010010080080003400000000203"], 0x1d4}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

591.490322ms ago: executing program 1 (id=2049):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, &(0x7f00000001c0)="b69840", 0x3, 0x2004c005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
rt_tgsigqueueinfo(0x0, 0x0, 0x7, 0x0)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r4, 0xe19, 0x70bd26, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x8e, 0x2}, {0xc, 0x8f, 0x401}, {0xc, 0x90, 0x4237}}]}, 0x54}, 0x1, 0x0, 0x0, 0x24008010}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000001640), r5)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="09000000000000000000020000001400018005000200"], 0x28}}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB], 0x68}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syncfs(0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r9, &(0x7f0000004200)='t', 0x1)
sendfile(r9, r8, 0x0, 0x3ffff)
sendfile(r9, r8, 0x0, 0x7ffff000)

257.287795ms ago: executing program 4 (id=2050):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, &(0x7f00000001c0)="b69840", 0x3, 0x2004c005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
rt_tgsigqueueinfo(0x0, 0x0, 0x7, 0x0)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r4, 0xe19, 0x70bd26, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x8e, 0x2}, {0xc, 0x8f, 0x401}, {0xc, 0x90, 0x4237}}]}, 0x54}, 0x1, 0x0, 0x0, 0x24008010}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000001640), r5)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="09000000000000000000020000001400018005000200"], 0x28}}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB], 0x68}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syncfs(0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r9, &(0x7f0000004200)='t', 0x1)
sendfile(r9, r8, 0x0, 0x3ffff)
sendfile(r9, r8, 0x0, 0x7ffff000)

116.124039ms ago: executing program 0 (id=2051):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f00000005c0), r0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, 0x0, 0x1c1202, 0x0)
write(r1, &(0x7f0000000400)="44a36fde0f0726b8e887a6b622293779feafefb553cf3dd52fd8a513ba2e86a2e2946bfbffffdd42442b878dde35", 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$rds(0xffffffffffffffff, 0x0, 0x810)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
process_vm_writev(0x0, &(0x7f0000000500)=[{0x0}, {0xffffffffffffffff}, {0xfffffffffffffffc}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x0)

0s ago: executing program 0 (id=2052):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
finit_module(0xffffffffffffffff, 0x0, 0x7)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
lsm_list_modules(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b7050000000000007910be00000000007f0a0000000000009500000000000000"], &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79}, 0x2a)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000002480)="$eJzs3E+LHEUYB+B315iNG/ePGqMJiIVe9NJk9+BFL4tsQDKgJFkhEYSO26vDtDPD9LAwIkZPXv0cIojgTRBvetmL30DwthePEcSWndEko5PDSEiH5Xku80LVb6jqphuq6erD1774sLNXZXv5MBYXFmKxH5FupUixGP/4NF5+9cefnrty7fqlrVZr+3JKF7eubrySUlp9/vt3Pv7qhR+Gp9/+dvW7pThYf/fwt81fD84enDv88+oH7Sq1q9TtDVOebvR6w/xGWaTddtXJUnqrLPKqSO1uVQym2vfKXr8/Snl3d2W5PyiqKuXdUeoUozTspeFglPL383Y3ZVmWVpaD+Z24Xe18eauu64i6fjRORl3X9WOxHKfj8ViJ1ViL9Xginoyn4kw8HWfjmXg2vvnl69FRAgAAAAAAAAAAAAAAAAAAALh/5t3/f27cq+lRAwAAAAAAAAAAAAAAAAAAwPFy5dr1S1ut1vbllE5FlJ/v7+zvTH4n7Vt70Y4yirgQa/FHjHf/T0zqi2+0ti+ksfX4rLz5d/7m/s4j0/mN8ecEZuY3Jvk0nV+K5bvzm7EWZ2bnN2fmT8VLL96Vz2Itfn4velHGbhxl7+Q/2Ujp9Tdb/8qfH/cDAACA4yBLt81cv2fZvdon+TmeD0ytr4+y5080OnUiohp91MnLshgoHvriZLPD+L2u6+YPQkPFva+UpYj43/+8EBEPxwT/UzR9Z+JBuHPSmx4JAAAAAAAAAAAA83gQrxM2PUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YgeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHwVAAD//+pd0x0=")
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f00000004c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x26}}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r2, 0x0, 0xd, &(0x7f0000000180)=0x3ff, 0x4)
r3 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x30, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x46)
accept4(r3, &(0x7f00000003c0)=@alg, &(0x7f0000000440)=0x80, 0x80000)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r4, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x200000000000000, 0x1}}, 0x40)
recvmmsg(r2, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)

kernel console output (not intermixed with test programs):

 unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.921556][   T29] kauditd_printk_skb: 318 callbacks suppressed
[  165.921574][   T29] audit: type=1326 audit(1760820135.095:5519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.3.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  165.952086][   T29] audit: type=1326 audit(1760820135.105:5520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.3.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  165.982182][ T8280] loop3: detected capacity change from 0 to 256
[  165.989326][   T29] audit: type=1326 audit(1760820135.165:5521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.3.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  166.013579][   T29] audit: type=1326 audit(1760820135.165:5522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.3.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  166.037896][   T29] audit: type=1326 audit(1760820135.165:5523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.3.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  166.062111][   T29] audit: type=1326 audit(1760820135.165:5524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.3.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  166.086236][   T29] audit: type=1326 audit(1760820135.165:5525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.3.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  166.110395][   T29] audit: type=1326 audit(1760820135.165:5526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.3.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  166.134535][   T29] audit: type=1326 audit(1760820135.165:5527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.3.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  166.141347][ T8280] FAT-fs (loop3): bogus number of FAT sectors
[  166.158976][   T29] audit: type=1326 audit(1760820135.165:5528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8279 comm="syz.3.1526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f44d226d810 code=0x7ffc0000
[  166.164242][ T8280] FAT-fs (loop3): Can't find a valid FAT filesystem
[  166.401304][ T8299] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  166.460087][ T8307] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  166.513830][ T8310] random: crng reseeded on system resumption
[  166.547795][ T8311] tmpfs: Bad value for 'mpol'
[  166.577627][ T8313] FAULT_INJECTION: forcing a failure.
[  166.577627][ T8313] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  166.577668][ T8313] CPU: 0 UID: 0 PID: 8313 Comm: syz.1.1538 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  166.577773][ T8313] Tainted: [W]=WARN
[  166.577781][ T8313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  166.577801][ T8313] Call Trace:
[  166.577808][ T8313]  <TASK>
[  166.577818][ T8313]  __dump_stack+0x1d/0x30
[  166.577855][ T8313]  dump_stack_lvl+0xe8/0x140
[  166.577881][ T8313]  dump_stack+0x15/0x1b
[  166.577964][ T8313]  should_fail_ex+0x265/0x280
[  166.578012][ T8313]  should_fail+0xb/0x20
[  166.578056][ T8313]  should_fail_usercopy+0x1a/0x20
[  166.578094][ T8313]  _copy_from_user+0x1c/0xb0
[  166.578128][ T8313]  memdup_user+0x5e/0xd0
[  166.578164][ T8313]  strndup_user+0x68/0xb0
[  166.578318][ T8313]  bpf_uprobe_multi_link_attach+0x20b/0x900
[  166.578365][ T8313]  ? __rcu_read_unlock+0x4f/0x70
[  166.578436][ T8313]  ? __fget_files+0x184/0x1c0
[  166.578474][ T8313]  link_create+0x680/0x6e0
[  166.578522][ T8313]  __sys_bpf+0x628/0x7c0
[  166.578669][ T8313]  __x64_sys_bpf+0x41/0x50
[  166.578707][ T8313]  x64_sys_call+0x2aee/0x3000
[  166.578734][ T8313]  do_syscall_64+0xd2/0x200
[  166.578763][ T8313]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  166.578885][ T8313]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  166.578917][ T8313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.578941][ T8313] RIP: 0033:0x7fba3043efc9
[  166.579031][ T8313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.579058][ T8313] RSP: 002b:00007fba2ee9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  166.579081][ T8313] RAX: ffffffffffffffda RBX: 00007fba30695fa0 RCX: 00007fba3043efc9
[  166.579094][ T8313] RDX: 0000000000000040 RSI: 00002000000003c0 RDI: 000000000000001c
[  166.579106][ T8313] RBP: 00007fba2ee9f090 R08: 0000000000000000 R09: 0000000000000000
[  166.579171][ T8313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  166.579184][ T8313] R13: 00007fba30696038 R14: 00007fba30695fa0 R15: 00007ffc27e619c8
[  166.579210][ T8313]  </TASK>
[  167.609934][ T8341] netlink: 'syz.3.1545': attribute type 29 has an invalid length.
[  167.636819][ T8341] netlink: 'syz.3.1545': attribute type 29 has an invalid length.
[  167.852486][ T8354] loop1: detected capacity change from 0 to 8192
[  167.990876][ T8348] pim6reg: entered allmulticast mode
[  167.996816][ T8348] pim6reg: left allmulticast mode
[  168.165198][ T3420] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  168.184848][ T8364] netlink: 'syz.3.1552': attribute type 1 has an invalid length.
[  168.519998][ T8383] 8021q: adding VLAN 0 to HW filter on device bond0
[  168.528477][ T8383] 8021q: adding VLAN 0 to HW filter on device team0
[  168.538220][ T8383] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  168.558942][ T8385] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  168.676953][ T8392] loop1: detected capacity change from 0 to 512
[  168.705343][ T8397] FAULT_INJECTION: forcing a failure.
[  168.705343][ T8397] name failslab, interval 1, probability 0, space 0, times 0
[  168.718142][ T8397] CPU: 0 UID: 0 PID: 8397 Comm: syz.3.1561 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  168.718260][ T8397] Tainted: [W]=WARN
[  168.718268][ T8397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  168.718282][ T8397] Call Trace:
[  168.718288][ T8397]  <TASK>
[  168.718296][ T8397]  __dump_stack+0x1d/0x30
[  168.718321][ T8397]  dump_stack_lvl+0xe8/0x140
[  168.718345][ T8397]  dump_stack+0x15/0x1b
[  168.718365][ T8397]  should_fail_ex+0x265/0x280
[  168.718408][ T8397]  should_failslab+0x8c/0xb0
[  168.718500][ T8397]  kmem_cache_alloc_noprof+0x50/0x480
[  168.718653][ T8397]  ? _sctp_make_chunk+0xbf/0x210
[  168.718691][ T8397]  _sctp_make_chunk+0xbf/0x210
[  168.718728][ T8397]  sctp_make_abort_user+0x4c/0x3a0
[  168.718826][ T8397]  sctp_sendmsg_check_sflags+0x17e/0x1e0
[  168.718915][ T8397]  sctp_sendmsg+0x10bb/0x18d0
[  168.718965][ T8397]  ? __pfx_sctp_sendmsg+0x10/0x10
[  168.719005][ T8397]  inet_sendmsg+0xc5/0xd0
[  168.719050][ T8397]  __sock_sendmsg+0x102/0x180
[  168.719079][ T8397]  ____sys_sendmsg+0x31e/0x4e0
[  168.719112][ T8397]  ___sys_sendmsg+0x17b/0x1d0
[  168.719245][ T8397]  __x64_sys_sendmsg+0xd4/0x160
[  168.719289][ T8397]  x64_sys_call+0x191e/0x3000
[  168.719318][ T8397]  do_syscall_64+0xd2/0x200
[  168.719402][ T8397]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  168.719505][ T8397]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  168.719621][ T8397]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.719647][ T8397] RIP: 0033:0x7f44d226efc9
[  168.719668][ T8397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.719692][ T8397] RSP: 002b:00007f44d0cb6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  168.719774][ T8397] RAX: ffffffffffffffda RBX: 00007f44d24c6090 RCX: 00007f44d226efc9
[  168.719786][ T8397] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[  168.719798][ T8397] RBP: 00007f44d0cb6090 R08: 0000000000000000 R09: 0000000000000000
[  168.719860][ T8397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.719877][ T8397] R13: 00007f44d24c6128 R14: 00007f44d24c6090 R15: 00007fffe5286d98
[  168.719965][ T8397]  </TASK>
[  168.977810][ T8399] loop1: detected capacity change from 0 to 1024
[  168.995924][ T8405] loop2: detected capacity change from 0 to 256
[  169.011162][ T8399] EXT4-fs: Ignoring removed bh option
[  169.016801][ T8399] EXT4-fs: Ignoring removed orlov option
[  169.022557][ T8399] EXT4-fs: Ignoring removed nomblk_io_submit option
[  169.029668][ T8405] FAT-fs (loop2): bogus number of FAT sectors
[  169.035808][ T8405] FAT-fs (loop2): Can't find a valid FAT filesystem
[  169.149493][ T8399] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.215147][ T8413] __nla_validate_parse: 12 callbacks suppressed
[  169.215175][ T8413] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1568'.
[  169.362522][ T8399] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1565'.
[  169.470461][ T8415] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  169.623684][ T8399] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.748906][ T8425] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1571'.
[  170.407821][ T8439] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  170.496592][ T8446] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1576'.
[  170.595001][ T8454] netlink: 'syz.4.1579': attribute type 142 has an invalid length.
[  170.602982][ T8454] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1579'.
[  170.652446][ T8459] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1585'.
[  170.661912][ T8454] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1579'.
[  170.670803][ T8454] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1579'.
[  170.713213][ T8454] loop4: detected capacity change from 0 to 1024
[  170.719946][ T8454] EXT4-fs: Ignoring removed orlov option
[  170.743087][ T8454] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.795437][ T8459] lo speed is unknown, defaulting to 1000
[  170.853707][ T8478] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1589' sets config #-1
[  170.952243][   T29] kauditd_printk_skb: 238 callbacks suppressed
[  170.952258][   T29] audit: type=1326 audit(1760820140.125:5767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8458 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  170.982670][   T29] audit: type=1326 audit(1760820140.135:5768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8458 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  171.032816][   T29] audit: type=1326 audit(1760820140.175:5769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8458 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  171.057040][   T29] audit: type=1326 audit(1760820140.175:5770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8458 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  171.081278][   T29] audit: type=1326 audit(1760820140.175:5771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8458 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  171.105599][   T29] audit: type=1400 audit(1760820140.185:5772): avc:  denied  { create } for  pid=8481 comm="syz.0.1590" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  171.127077][   T29] audit: type=1400 audit(1760820140.205:5773): avc:  denied  { unlink } for  pid=3311 comm="syz-executor" name="file0" dev="tmpfs" ino=1942 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  171.150500][   T29] audit: type=1400 audit(1760820140.215:5774): avc:  denied  { create } for  pid=8483 comm="syz.0.1591" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  171.170779][   T29] audit: type=1400 audit(1760820140.255:5775): avc:  denied  { write } for  pid=8485 comm="syz.1.1592" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  171.237358][ T8499] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  171.256014][   T29] audit: type=1326 audit(1760820140.435:5776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8505 comm="syz.2.1595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  171.305834][ T8512] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1593'.
[  171.400152][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.430412][ T8514] netlink: 'syz.2.1596': attribute type 13 has an invalid length.
[  171.439417][ T8532] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1598'.
[  171.833116][ T8567] netlink: 'syz.3.1603': attribute type 1 has an invalid length.
[  172.361536][ T8589] 8021q: adding VLAN 0 to HW filter on device bond0
[  172.369604][ T8589] 8021q: adding VLAN 0 to HW filter on device team0
[  172.378686][ T8589] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  172.496790][ T8594] lo speed is unknown, defaulting to 1000
[  173.136119][ T8612] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  173.763934][ T8649] netlink: 'syz.4.1614': attribute type 13 has an invalid length.
[  173.788636][ T3480] lo speed is unknown, defaulting to 1000
[  173.794512][ T3480] syz0: Port: 1 Link DOWN
[  173.976802][ T8677] netlink: 'syz.4.1617': attribute type 13 has an invalid length.
[  174.000859][ T8699] netlink: 'syz.2.1620': attribute type 1 has an invalid length.
[  174.077346][ T8708] loop4: detected capacity change from 0 to 512
[  174.086267][ T8708] EXT4-fs (loop4): orphan cleanup on readonly fs
[  174.102602][ T3420] hid_parser_main: 48 callbacks suppressed
[  174.102621][ T3420] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  174.116806][ T3420] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  174.124249][ T3420] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  174.136317][ T8708] EXT4-fs warning (device loop4): ext4_xattr_inode_get:560: inode #11: comm syz.4.1621: EA inode hash validation failed
[  174.149384][ T8708] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  174.179047][ T8708] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #15: comm syz.4.1621: corrupted inode contents
[  174.185099][ T8730] netlink: 'syz.1.1623': attribute type 1 has an invalid length.
[  174.214159][ T3420] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  174.219406][ T8727] syz.0.1625 uses obsolete (PF_INET,SOCK_PACKET)
[  174.222504][ T3420] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  174.232645][ T8708] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #15: comm syz.4.1621: mark_inode_dirty error
[  174.235722][ T3420] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  174.255216][ T3420] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  174.263420][ T3420] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  174.270920][ T3420] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  174.278353][ T3420] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  174.282080][ T8708] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #15: comm syz.4.1621: corrupted inode contents
[  174.298760][ T3420] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  174.309285][ T8708] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2996: inode #15: comm syz.4.1621: mark_inode_dirty error
[  174.321993][ T8733] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  174.337819][ T8708] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2999: inode #15: comm syz.4.1621: mark inode dirty (error -117)
[  174.381537][ T8708] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[  174.400067][ T8708] EXT4-fs (loop4): 1 orphan inode deleted
[  174.410769][ T8738] loop1: detected capacity change from 0 to 1024
[  174.418098][ T8708] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  174.450609][ T8738] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  174.487340][ T8738] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #11: comm syz.1.1628: iget: bogus i_mode (1)
[  174.499090][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.509449][ T8738] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1628: couldn't read orphan inode 11 (err -117)
[  174.529887][ T8738] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.553702][ T8743] 9pnet_fd: Insufficient options for proto=fd
[  174.559899][ T8745] 9pnet_fd: Insufficient options for proto=fd
[  174.738551][ T8747] __nla_validate_parse: 15 callbacks suppressed
[  174.738569][ T8747] netlink: 5452 bytes leftover after parsing attributes in process `syz.4.1630'.
[  174.808896][ T8759] FAULT_INJECTION: forcing a failure.
[  174.808896][ T8759] name failslab, interval 1, probability 0, space 0, times 0
[  174.821798][ T8759] CPU: 1 UID: 0 PID: 8759 Comm: syz.4.1631 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  174.821840][ T8759] Tainted: [W]=WARN
[  174.821849][ T8759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  174.821865][ T8759] Call Trace:
[  174.821871][ T8759]  <TASK>
[  174.821879][ T8759]  __dump_stack+0x1d/0x30
[  174.821905][ T8759]  dump_stack_lvl+0xe8/0x140
[  174.821938][ T8759]  dump_stack+0x15/0x1b
[  174.821959][ T8759]  should_fail_ex+0x265/0x280
[  174.822005][ T8759]  ? alloc_fs_context+0x44/0x4e0
[  174.822035][ T8759]  should_failslab+0x8c/0xb0
[  174.822072][ T8759]  __kmalloc_cache_noprof+0x4c/0x4a0
[  174.822193][ T8759]  alloc_fs_context+0x44/0x4e0
[  174.822223][ T8759]  fs_context_for_mount+0x22/0x30
[  174.822245][ T8759]  do_new_mount+0xea/0x660
[  174.822299][ T8759]  ? security_capable+0x83/0x90
[  174.822344][ T8759]  path_mount+0x4a5/0xb70
[  174.822373][ T8759]  ? user_path_at+0x109/0x130
[  174.822433][ T8759]  __se_sys_mount+0x28c/0x2e0
[  174.822457][ T8759]  ? fput+0x8f/0xc0
[  174.822512][ T8759]  __x64_sys_mount+0x67/0x80
[  174.822586][ T8759]  x64_sys_call+0x2b51/0x3000
[  174.822613][ T8759]  do_syscall_64+0xd2/0x200
[  174.822637][ T8759]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  174.822664][ T8759]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  174.822706][ T8759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.822735][ T8759] RIP: 0033:0x7f480770efc9
[  174.822755][ T8759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.822785][ T8759] RSP: 002b:00007f480616f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  174.822811][ T8759] RAX: ffffffffffffffda RBX: 00007f4807965fa0 RCX: 00007f480770efc9
[  174.822829][ T8759] RDX: 0000200000001440 RSI: 0000200000001400 RDI: 00002000000013c0
[  174.822881][ T8759] RBP: 00007f480616f090 R08: 00002000000000c0 R09: 0000000000000000
[  174.822894][ T8759] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[  174.822906][ T8759] R13: 00007f4807966038 R14: 00007f4807965fa0 R15: 00007ffeb0276e58
[  174.822927][ T8759]  </TASK>
[  175.330021][ T8767] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1628'.
[  175.457924][ T8775] netlink: 'syz.2.1635': attribute type 1 has an invalid length.
[  175.465790][ T8775] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.1635'.
[  175.657074][ T8777] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1636'.
[  175.747582][ T8780] Cannot find del_set index 3 as target
[  175.773126][ T8778] loop2: detected capacity change from 0 to 512
[  175.782270][ T8778] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  175.799603][ T8778] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 9: comm syz.2.1636: lblock 0 mapped to illegal pblock 9 (length 1)
[  175.814265][ T8778] EXT4-fs (loop2): mount failed
[  175.823484][ T8778] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8778 comm=syz.2.1636
[  175.836022][ T8778] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8778 comm=syz.2.1636
[  175.851928][ T8786] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  175.970757][ T8794] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1642'.
[  175.981813][ T8794] syzkaller0: entered allmulticast mode
[  175.989483][   T29] kauditd_printk_skb: 172 callbacks suppressed
[  175.989498][   T29] audit: type=1400 audit(1760820145.165:5949): avc:  denied  { sqpoll } for  pid=8793 comm="syz.4.1642" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  176.087845][ T8796] netlink: 108 bytes leftover after parsing attributes in process `syz.3.1643'.
[  176.097713][ T8796] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1643'.
[  176.169813][ T8798] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1643'.
[  176.181062][ T8798] batman_adv: batadv0: Removing interface: batadv_slave_0
[  176.190811][ T8798] batman_adv: batadv0: Removing interface: batadv_slave_1
[  176.234521][ T8799] bridge2: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms)
[  176.301032][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.332721][ T8801] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  176.349096][ T8801] loop1: detected capacity change from 0 to 512
[  176.356718][ T8801] EXT4-fs: Ignoring removed oldalloc option
[  176.366122][ T8801] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  176.378251][ T8801] EXT4-fs (loop1): 1 truncate cleaned up
[  176.387578][ T8801] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.403810][   T29] audit: type=1400 audit(1760820145.585:5950): avc:  denied  { mounton } for  pid=8800 comm="syz.1.1644" path="/278/file2/file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  176.455390][ T8803] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1644'.
[  176.528932][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.542943][   T29] audit: type=1326 audit(1760820145.715:5951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8e0d995e67 code=0x7ffc0000
[  176.566386][   T29] audit: type=1326 audit(1760820145.715:5952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8e0d93b099 code=0x7ffc0000
[  176.589764][   T29] audit: type=1326 audit(1760820145.715:5953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8e0d995e67 code=0x7ffc0000
[  176.613132][   T29] audit: type=1326 audit(1760820145.715:5954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8e0d93b099 code=0x7ffc0000
[  176.636504][   T29] audit: type=1326 audit(1760820145.715:5955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  176.659978][   T29] audit: type=1326 audit(1760820145.715:5956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  176.683460][   T29] audit: type=1326 audit(1760820145.715:5957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=91 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  176.706802][   T29] audit: type=1326 audit(1760820145.715:5958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  176.759316][ T8810] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1648'.
[  176.807860][ T8793] syzkaller0: left allmulticast mode
[  176.815932][ T8814] lo speed is unknown, defaulting to 1000
[  176.984828][ T8832] netlink: 'syz.1.1655': attribute type 10 has an invalid length.
[  177.030422][ T8832] lo speed is unknown, defaulting to 1000
[  177.038041][ T8832] lo speed is unknown, defaulting to 1000
[  177.045743][ T8832] lo speed is unknown, defaulting to 1000
[  177.053567][ T8832] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  177.084037][ T8832] lo speed is unknown, defaulting to 1000
[  177.090501][ T8832] lo speed is unknown, defaulting to 1000
[  177.096885][ T8832] lo speed is unknown, defaulting to 1000
[  177.103556][ T8832] lo speed is unknown, defaulting to 1000
[  177.109958][ T8832] lo speed is unknown, defaulting to 1000
[  177.501576][ T8850] syzkaller0: entered allmulticast mode
[  177.618472][ T8852] loop2: detected capacity change from 0 to 2048
[  177.629172][ T8852] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.914555][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.960520][ T8862] lo speed is unknown, defaulting to 1000
[  177.983059][ T8865] lo speed is unknown, defaulting to 1000
[  178.014757][ T8862] lo speed is unknown, defaulting to 1000
[  178.059337][ T8867] FAULT_INJECTION: forcing a failure.
[  178.059337][ T8867] name failslab, interval 1, probability 0, space 0, times 0
[  178.072973][ T8867] CPU: 0 UID: 0 PID: 8867 Comm: syz.2.1663 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  178.073044][ T8867] Tainted: [W]=WARN
[  178.073053][ T8867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  178.073070][ T8867] Call Trace:
[  178.073077][ T8867]  <TASK>
[  178.073087][ T8867]  __dump_stack+0x1d/0x30
[  178.073174][ T8867]  dump_stack_lvl+0xe8/0x140
[  178.073200][ T8867]  dump_stack+0x15/0x1b
[  178.073220][ T8867]  should_fail_ex+0x265/0x280
[  178.073255][ T8867]  ? __pfx_sock_alloc_inode+0x10/0x10
[  178.073277][ T8867]  should_failslab+0x8c/0xb0
[  178.073311][ T8867]  kmem_cache_alloc_lru_noprof+0x55/0x490
[  178.073341][ T8867]  ? sock_alloc_inode+0x34/0xa0
[  178.073370][ T8867]  ? __pfx_sock_alloc_inode+0x10/0x10
[  178.073390][ T8867]  sock_alloc_inode+0x34/0xa0
[  178.073410][ T8867]  alloc_inode+0x40/0x170
[  178.073434][ T8867]  __sock_create+0x122/0x5b0
[  178.073518][ T8867]  ? fput+0x8f/0xc0
[  178.073550][ T8867]  __sys_socket+0xb0/0x180
[  178.073573][ T8867]  __x64_sys_socket+0x3f/0x50
[  178.073595][ T8867]  x64_sys_call+0x1147/0x3000
[  178.073669][ T8867]  do_syscall_64+0xd2/0x200
[  178.073720][ T8867]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  178.073749][ T8867]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  178.073772][ T8867]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.073794][ T8867] RIP: 0033:0x7f8e0d99efc9
[  178.073810][ T8867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.073861][ T8867] RSP: 002b:00007f8e0c3e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  178.073880][ T8867] RAX: ffffffffffffffda RBX: 00007f8e0dbf6090 RCX: 00007f8e0d99efc9
[  178.073894][ T8867] RDX: 000000000000003a RSI: 0000000000000002 RDI: 000000000000000a
[  178.073906][ T8867] RBP: 00007f8e0c3e6090 R08: 0000000000000000 R09: 0000000000000000
[  178.073919][ T8867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.073932][ T8867] R13: 00007f8e0dbf6128 R14: 00007f8e0dbf6090 R15: 00007ffd5f035d28
[  178.074081][ T8867]  </TASK>
[  178.074153][ T8867] socket: no more sockets
[  178.178584][ T8865] lo speed is unknown, defaulting to 1000
[  178.405327][ T8849] syzkaller0: left allmulticast mode
[  178.491984][ T8891] hsr_slave_0: left promiscuous mode
[  178.493497][ T8889] netlink: 'syz.2.1673': attribute type 1 has an invalid length.
[  178.505911][ T8891] hsr_slave_1: left promiscuous mode
[  178.607904][ T8899] FAULT_INJECTION: forcing a failure.
[  178.607904][ T8899] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  178.621114][ T8899] CPU: 1 UID: 0 PID: 8899 Comm: syz.2.1676 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  178.621234][ T8899] Tainted: [W]=WARN
[  178.621241][ T8899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  178.621257][ T8899] Call Trace:
[  178.621266][ T8899]  <TASK>
[  178.621277][ T8899]  __dump_stack+0x1d/0x30
[  178.621316][ T8899]  dump_stack_lvl+0xe8/0x140
[  178.621342][ T8899]  dump_stack+0x15/0x1b
[  178.621364][ T8899]  should_fail_ex+0x265/0x280
[  178.621402][ T8899]  should_fail+0xb/0x20
[  178.621509][ T8899]  should_fail_usercopy+0x1a/0x20
[  178.621576][ T8899]  _copy_from_user+0x1c/0xb0
[  178.621610][ T8899]  restore_altstack+0x4b/0x2d0
[  178.621639][ T8899]  ? __set_task_blocked+0x23a/0x2a0
[  178.621691][ T8899]  __ia32_sys_rt_sigreturn+0xdc/0x350
[  178.621721][ T8899]  ? _raw_spin_unlock_irq+0x26/0x50
[  178.621762][ T8899]  ? signal_setup_done+0x266/0x290
[  178.621785][ T8899]  ? xfd_validate_state+0x45/0xf0
[  178.621874][ T8899]  ? fpu__clear_user_states+0x63/0x1e0
[  178.621927][ T8899]  ? fpregs_mark_activate+0x66/0x140
[  178.621961][ T8899]  ? fpu__clear_user_states+0x63/0x1e0
[  178.622083][ T8899]  ? arch_do_signal_or_restart+0x2b5/0x440
[  178.622121][ T8899]  ? __rcu_read_unlock+0x4f/0x70
[  178.622157][ T8899]  x64_sys_call+0x2d4b/0x3000
[  178.622259][ T8899]  do_syscall_64+0xd2/0x200
[  178.622309][ T8899]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  178.622336][ T8899]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  178.622432][ T8899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.622462][ T8899] RIP: 0033:0x7f8e0d93b099
[  178.622481][ T8899] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  178.622499][ T8899] RSP: 002b:00007f8e0c406a80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[  178.622518][ T8899] RAX: ffffffffffffffda RBX: 00007f8e0dbf5fa0 RCX: 00007f8e0d93b099
[  178.622530][ T8899] RDX: 00007f8e0c406a80 RSI: 00007f8e0c406bb0 RDI: 0000000000000021
[  178.622599][ T8899] RBP: 00007f8e0c407090 R08: 0000000000000000 R09: 0000000000000000
[  178.622649][ T8899] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002
[  178.622666][ T8899] R13: 00007f8e0dbf6038 R14: 00007f8e0dbf5fa0 R15: 00007ffd5f035d28
[  178.622693][ T8899]  </TASK>
[  179.227484][ T8906] netlink: 'syz.2.1678': attribute type 13 has an invalid length.
[  179.383697][ T8877] syz.4.1669 (8877) used greatest stack depth: 5080 bytes left
[  179.468316][ T8921] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8921 comm=syz.2.1682
[  179.481624][ T8921] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8921 comm=syz.2.1682
[  179.589111][ T8924] 9pnet_virtio: no channels available for device 127.0.0.1
[  179.621539][ T8927] syzkaller0: entered allmulticast mode
[  180.412227][ T8948] __nla_validate_parse: 11 callbacks suppressed
[  180.412247][ T8948] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1689'.
[  180.475906][ T8926] syzkaller0: left allmulticast mode
[  180.499142][ T8954] netlink: 112 bytes leftover after parsing attributes in process `syz.3.1692'.
[  180.554310][ T8959] netlink: 'syz.2.1693': attribute type 1 has an invalid length.
[  180.562959][ T8959] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.1693'.
[  180.625550][ T8962] loop1: detected capacity change from 0 to 512
[  180.632482][ T8962] EXT4-fs: Ignoring removed oldalloc option
[  180.644439][ T8962] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.657081][ T8969] netlink: 'syz.3.1697': attribute type 142 has an invalid length.
[  180.665052][ T8969] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1697'.
[  180.674117][ T8962] ext4 filesystem being mounted at /285/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  180.686065][ T8969] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1697'.
[  180.694954][ T8969] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1697'.
[  180.717009][ T8969] loop3: detected capacity change from 0 to 1024
[  180.723738][ T8969] EXT4-fs: Ignoring removed orlov option
[  180.732193][ T8962] EXT4-fs error (device loop1): ext4_lookup:1787: inode #12: comm syz.1.1695: iget: bad i_size value: 2533274857506816
[  180.771778][ T8962] EXT4-fs (loop1): Remounting filesystem read-only
[  180.797703][ T8962] FAULT_INJECTION: forcing a failure.
[  180.797703][ T8962] name failslab, interval 1, probability 0, space 0, times 0
[  180.810403][ T8962] CPU: 1 UID: 0 PID: 8962 Comm: syz.1.1695 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  180.810443][ T8962] Tainted: [W]=WARN
[  180.810449][ T8962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  180.810513][ T8962] Call Trace:
[  180.810521][ T8962]  <TASK>
[  180.810530][ T8962]  __dump_stack+0x1d/0x30
[  180.810552][ T8962]  dump_stack_lvl+0xe8/0x140
[  180.810574][ T8962]  dump_stack+0x15/0x1b
[  180.810595][ T8962]  should_fail_ex+0x265/0x280
[  180.810657][ T8962]  should_failslab+0x8c/0xb0
[  180.810687][ T8962]  kmem_cache_alloc_noprof+0x50/0x480
[  180.810714][ T8962]  ? security_file_alloc+0x32/0x100
[  180.810742][ T8962]  security_file_alloc+0x32/0x100
[  180.810832][ T8962]  init_file+0x5c/0x1d0
[  180.810873][ T8962]  alloc_empty_file+0x8b/0x200
[  180.810932][ T8962]  path_openat+0x68/0x2170
[  180.810951][ T8962]  ? __rcu_read_unlock+0x4f/0x70
[  180.810982][ T8962]  ? _parse_integer_limit+0x170/0x190
[  180.811050][ T8962]  ? __rcu_read_unlock+0x4f/0x70
[  180.811120][ T8962]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  180.811229][ T8962]  ? plist_check_list+0x1cf/0x210
[  180.811274][ T8962]  ? _raw_spin_unlock+0x26/0x50
[  180.811312][ T8962]  do_filp_open+0x109/0x230
[  180.811339][ T8962]  do_sys_openat2+0xa6/0x110
[  180.811373][ T8962]  __x64_sys_openat+0xf2/0x120
[  180.811410][ T8962]  x64_sys_call+0x2eab/0x3000
[  180.811437][ T8962]  do_syscall_64+0xd2/0x200
[  180.811468][ T8962]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  180.811551][ T8962]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  180.811581][ T8962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.811602][ T8962] RIP: 0033:0x7fba3043efc9
[  180.811649][ T8962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.811670][ T8962] RSP: 002b:00007fba2ee9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  180.811688][ T8962] RAX: ffffffffffffffda RBX: 00007fba30695fa0 RCX: 00007fba3043efc9
[  180.811719][ T8962] RDX: 0000000000511a01 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  180.811734][ T8962] RBP: 00007fba2ee9f090 R08: 0000000000000000 R09: 0000000000000000
[  180.811749][ T8962] R10: 0000000000000180 R11: 0000000000000246 R12: 0000000000000001
[  180.811766][ T8962] R13: 00007fba30696038 R14: 00007fba30695fa0 R15: 00007ffc27e619c8
[  180.811804][ T8962]  </TASK>
[  181.091188][   T29] kauditd_printk_skb: 54 callbacks suppressed
[  181.091207][   T29] audit: type=1326 audit(1760820149.925:6013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8957 comm="syz.0.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f284d8fefc9 code=0x7ffc0000
[  181.120276][ T8969] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.133157][   T29] audit: type=1326 audit(1760820149.925:6014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8957 comm="syz.0.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f284d8fefc9 code=0x7ffc0000
[  181.157353][   T29] audit: type=1326 audit(1760820149.925:6015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8957 comm="syz.0.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f284d8fefc9 code=0x7ffc0000
[  181.181764][   T29] audit: type=1326 audit(1760820149.925:6016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8957 comm="syz.0.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f284d8fefc9 code=0x7ffc0000
[  181.205956][   T29] audit: type=1326 audit(1760820149.925:6017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8957 comm="syz.0.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f284d8fefc9 code=0x7ffc0000
[  181.231193][   T29] audit: type=1400 audit(1760820150.345:6018): avc:  denied  { read open } for  pid=8966 comm="syz.3.1697" path="/322/bus/bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  181.254086][   T29] audit: type=1400 audit(1760820150.345:6019): avc:  denied  { write } for  pid=8966 comm="syz.3.1697" name="bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  181.367556][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.419870][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.440549][ T3400] hid_parser_main: 19 callbacks suppressed
[  181.440568][ T3400] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  181.453973][ T3400] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  181.461489][ T3400] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  181.492173][ T8992] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1700'.
[  181.496173][ T8994] syzkaller1: entered promiscuous mode
[  181.507432][ T8994] syzkaller1: entered allmulticast mode
[  181.520493][ T3400] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  181.528101][ T3400] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  181.535523][ T3400] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  181.542985][ T3400] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  181.550386][ T3400] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  181.557814][ T3400] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  181.565345][ T3400] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  181.574006][ T8995] netlink: 'syz.0.1702': attribute type 1 has an invalid length.
[  181.581840][ T8995] netlink: 5452 bytes leftover after parsing attributes in process `syz.0.1702'.
[  181.591064][ T8997] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8997 comm=syz.3.1700
[  181.603566][ T8997] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8997 comm=syz.3.1700
[  181.641869][ T3400] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  181.719434][ T9001] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1704'.
[  181.721311][   T29] audit: type=1400 audit(1760820150.895:6020): avc:  denied  { read } for  pid=9004 comm="syz.0.1706" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  181.752584][   T29] audit: type=1400 audit(1760820150.895:6021): avc:  denied  { open } for  pid=9004 comm="syz.0.1706" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  181.799864][   T29] audit: type=1400 audit(1760820150.915:6022): avc:  denied  { ioctl } for  pid=9004 comm="syz.0.1706" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  181.863746][ T9010] netlink: 'syz.4.1708': attribute type 1 has an invalid length.
[  181.871532][ T9010] netlink: 5452 bytes leftover after parsing attributes in process `syz.4.1708'.
[  181.986110][ T9015] FAULT_INJECTION: forcing a failure.
[  181.986110][ T9015] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  181.999317][ T9015] CPU: 1 UID: 0 PID: 9015 Comm: syz.4.1710 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  181.999375][ T9015] Tainted: [W]=WARN
[  181.999383][ T9015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  181.999399][ T9015] Call Trace:
[  181.999407][ T9015]  <TASK>
[  181.999414][ T9015]  __dump_stack+0x1d/0x30
[  181.999435][ T9015]  dump_stack_lvl+0xe8/0x140
[  181.999453][ T9015]  dump_stack+0x15/0x1b
[  181.999483][ T9015]  should_fail_ex+0x265/0x280
[  181.999525][ T9015]  should_fail+0xb/0x20
[  181.999587][ T9015]  should_fail_usercopy+0x1a/0x20
[  181.999613][ T9015]  _copy_to_user+0x20/0xa0
[  181.999635][ T9015]  copy_siginfo_to_user+0x22/0xb0
[  181.999657][ T9015]  x64_setup_rt_frame+0x2b5/0x580
[  181.999743][ T9015]  arch_do_signal_or_restart+0x23e/0x440
[  181.999768][ T9015]  ? 0xffffffffff600000
[  181.999784][ T9015]  exit_to_user_mode_loop+0x77/0x110
[  181.999838][ T9015]  do_syscall_64+0x1d6/0x200
[  181.999862][ T9015]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  181.999891][ T9015]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  181.999910][ T9015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.000005][ T9015] RIP: 0033:0x7f480770efc9
[  182.000018][ T9015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.000034][ T9015] RSP: 002b:00007f480616f038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  182.000050][ T9015] RAX: ffffffffffffffe5 RBX: 00007f4807965fa0 RCX: 00007f480770efc9
[  182.000062][ T9015] RDX: 0400000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  182.000122][ T9015] RBP: 00007f480616f090 R08: 0000000000000000 R09: 0000000000000000
[  182.000132][ T9015] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  182.000142][ T9015] R13: 00007f4807966038 R14: 00007f4807965fa0 R15: 00007ffeb0276e58
[  182.000231][ T9015]  </TASK>
[  182.263979][ T9019] netlink: 'syz.4.1711': attribute type 142 has an invalid length.
[  182.348935][ T9019] loop4: detected capacity change from 0 to 1024
[  182.469453][ T9019] EXT4-fs: Ignoring removed orlov option
[  182.552278][ T9019] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.597002][ T9025] vhci_hcd: invalid port number 254
[  182.650718][ T9031] netlink: 'syz.3.1716': attribute type 142 has an invalid length.
[  182.664234][ T9031] loop3: detected capacity change from 0 to 1024
[  182.671015][ T9031] EXT4-fs: Ignoring removed orlov option
[  182.701815][ T9031] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.855376][ T9046] loop1: detected capacity change from 0 to 2048
[  182.862537][ T9044] hsr_slave_0: left promiscuous mode
[  182.868348][ T9044] hsr_slave_1: left promiscuous mode
[  182.887726][ T9046] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.052948][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.075916][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.142346][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.198484][ T9062] loop3: detected capacity change from 0 to 2048
[  183.233711][ T9062] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.275778][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.331199][ T9074] loop3: detected capacity change from 0 to 512
[  183.337966][ T9074] EXT4-fs: Ignoring removed i_version option
[  183.344130][ T9074] EXT4-fs: Ignoring removed bh option
[  183.353684][ T9074] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.392611][ T9074] ext4 filesystem being mounted at /328/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  183.473549][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.704267][ T9089] lo speed is unknown, defaulting to 1000
[  183.768805][ T9089] lo speed is unknown, defaulting to 1000
[  184.188278][ T3400] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  184.222074][ T9095] netlink: 'syz.4.1732': attribute type 1 has an invalid length.
[  184.613171][ T9108] netlink: 'syz.3.1738': attribute type 13 has an invalid length.
[  184.829933][ T9120] No such timeout policy "syz1"
[  184.901156][ T9122] loop3: detected capacity change from 0 to 512
[  184.954614][ T9122] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.1740: error while reading EA inode 32 err=-116
[  184.997373][ T9122] EXT4-fs (loop3): Remounting filesystem read-only
[  185.005062][ T9122] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  185.018908][ T9122] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  185.030466][ T9122] EXT4-fs (loop3): 1 orphan inode deleted
[  185.037613][ T9122] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.054270][ T9122] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.132499][ T9126] 8021q: adding VLAN 0 to HW filter on device bond0
[  185.152246][ T9126] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  185.650228][ T9148] FAULT_INJECTION: forcing a failure.
[  185.650228][ T9148] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.663369][ T9148] CPU: 1 UID: 0 PID: 9148 Comm: syz.2.1748 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  185.663445][ T9148] Tainted: [W]=WARN
[  185.663455][ T9148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  185.663472][ T9148] Call Trace:
[  185.663480][ T9148]  <TASK>
[  185.663491][ T9148]  __dump_stack+0x1d/0x30
[  185.663519][ T9148]  dump_stack_lvl+0xe8/0x140
[  185.663546][ T9148]  dump_stack+0x15/0x1b
[  185.663569][ T9148]  should_fail_ex+0x265/0x280
[  185.663669][ T9148]  should_fail+0xb/0x20
[  185.663711][ T9148]  should_fail_usercopy+0x1a/0x20
[  185.663735][ T9148]  _copy_from_user+0x1c/0xb0
[  185.663760][ T9148]  __sys_bpf+0x183/0x7c0
[  185.663866][ T9148]  __x64_sys_bpf+0x41/0x50
[  185.663905][ T9148]  x64_sys_call+0x2aee/0x3000
[  185.663934][ T9148]  do_syscall_64+0xd2/0x200
[  185.663969][ T9148]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  185.664004][ T9148]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  185.664026][ T9148]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.664104][ T9148] RIP: 0033:0x7f8e0d99efc9
[  185.664124][ T9148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.664146][ T9148] RSP: 002b:00007f8e0c407038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  185.664215][ T9148] RAX: ffffffffffffffda RBX: 00007f8e0dbf5fa0 RCX: 00007f8e0d99efc9
[  185.664233][ T9148] RDX: 0000000000000038 RSI: 00002000000004c0 RDI: 0000000000000018
[  185.664250][ T9148] RBP: 00007f8e0c407090 R08: 0000000000000000 R09: 0000000000000000
[  185.664266][ T9148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.664283][ T9148] R13: 00007f8e0dbf6038 R14: 00007f8e0dbf5fa0 R15: 00007ffd5f035d28
[  185.664317][ T9148]  </TASK>
[  186.023780][ T9150] netlink: 'syz.0.1750': attribute type 13 has an invalid length.
[  186.167256][   T29] kauditd_printk_skb: 60 callbacks suppressed
[  186.167278][   T29] audit: type=1400 audit(1760820155.335:6083): avc:  denied  { write } for  pid=9152 comm="syz.2.1749" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  186.192749][   T29] audit: type=1400 audit(1760820155.335:6084): avc:  denied  { bind } for  pid=9152 comm="syz.2.1749" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  186.248663][ T9162] loop1: detected capacity change from 0 to 128
[  186.315275][   T29] audit: type=1400 audit(1760820155.445:6085): avc:  denied  { mount } for  pid=9161 comm="syz.1.1751" name="/" dev="loop1" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  186.337491][   T29] audit: type=1400 audit(1760820155.455:6086): avc:  denied  { create } for  pid=9161 comm="syz.1.1751" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  186.432405][ T9172] Process accounting resumed
[  186.437614][   T29] audit: type=1400 audit(1760820155.605:6087): avc:  denied  { unmount } for  pid=9161 comm="syz.1.1751" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  186.437910][ T9172] FAT-fs (loop1): error, corrupted file size (i_pos 548, 512)
[  186.465745][ T9172] FAT-fs (loop1): Filesystem has been set read-only
[  186.524639][ T9164] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  186.666566][   T29] audit: type=1326 audit(1760820155.845:6088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9181 comm="syz.1.1752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  186.690882][   T29] audit: type=1326 audit(1760820155.845:6089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9181 comm="syz.1.1752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  186.792085][   T29] audit: type=1326 audit(1760820155.895:6090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9181 comm="syz.1.1752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  186.816803][   T29] audit: type=1326 audit(1760820155.895:6091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9181 comm="syz.1.1752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  186.840979][   T29] audit: type=1326 audit(1760820155.895:6092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9181 comm="syz.1.1752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  186.892144][ T9186] __nla_validate_parse: 10 callbacks suppressed
[  186.892208][ T9186] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1755'.
[  186.918390][ T9190] loop2: detected capacity change from 0 to 512
[  186.929822][ T9192] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1757'.
[  186.939379][ T9192] hsr_slave_0: left promiscuous mode
[  186.946136][ T9192] hsr_slave_1: left promiscuous mode
[  186.963178][ T9190] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.976468][ T9190] ext4 filesystem being mounted at /364/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.977785][ T9197] netlink: 'syz.1.1758': attribute type 1 has an invalid length.
[  186.995520][ T9197] netlink: 5452 bytes leftover after parsing attributes in process `syz.1.1758'.
[  187.126033][ T9209] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1761'.
[  187.271999][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.361609][ T9213] lo speed is unknown, defaulting to 1000
[  187.432535][ T9213] lo speed is unknown, defaulting to 1000
[  188.249218][ T9218] netlink: 'syz.1.1764': attribute type 1 has an invalid length.
[  188.257002][ T9218] netlink: 5452 bytes leftover after parsing attributes in process `syz.1.1764'.
[  188.295967][ T9222] loop2: detected capacity change from 0 to 512
[  188.328841][ T9222] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  188.360448][ T9222] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.1765: invalid indirect mapped block 4294967295 (level 0)
[  188.391966][ T9222] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.1765: invalid indirect mapped block 4294967295 (level 1)
[  188.411706][ T9226] netlink: 'syz.1.1766': attribute type 13 has an invalid length.
[  188.416768][ T9222] EXT4-fs (loop2): 1 orphan inode deleted
[  188.425546][ T9222] EXT4-fs (loop2): 1 truncate cleaned up
[  188.435837][ T9222] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  188.476413][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.541581][ T9234] netlink: 92 bytes leftover after parsing attributes in process `syz.2.1770'.
[  188.553528][ T9235] netlink: 'syz.0.1767': attribute type 12 has an invalid length.
[  188.615651][ T9238] loop0: detected capacity change from 0 to 256
[  188.651041][ T9238] FAT-fs (loop0): bogus number of FAT sectors
[  188.657204][ T9238] FAT-fs (loop0): Can't find a valid FAT filesystem
[  188.688570][ T9232] FAULT_INJECTION: forcing a failure.
[  188.688570][ T9232] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  188.702401][ T9232] CPU: 0 UID: 0 PID: 9232 Comm: syz.4.1769 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  188.702436][ T9232] Tainted: [W]=WARN
[  188.702444][ T9232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  188.702461][ T9232] Call Trace:
[  188.702470][ T9232]  <TASK>
[  188.702478][ T9232]  __dump_stack+0x1d/0x30
[  188.702535][ T9232]  dump_stack_lvl+0xe8/0x140
[  188.702558][ T9232]  dump_stack+0x15/0x1b
[  188.702613][ T9232]  should_fail_ex+0x265/0x280
[  188.702656][ T9232]  should_fail+0xb/0x20
[  188.702688][ T9232]  should_fail_usercopy+0x1a/0x20
[  188.702708][ T9232]  copy_folio_from_iter_atomic+0x278/0x11b0
[  188.702759][ T9232]  ? shmem_write_begin+0xa8/0x190
[  188.702795][ T9232]  ? shmem_write_begin+0xe1/0x190
[  188.702853][ T9232]  generic_perform_write+0x2c2/0x490
[  188.702893][ T9232]  shmem_file_write_iter+0xc5/0xf0
[  188.702944][ T9232]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  188.703037][ T9232]  vfs_write+0x52a/0x960
[  188.703075][ T9232]  ksys_write+0xda/0x1a0
[  188.703107][ T9232]  __x64_sys_write+0x40/0x50
[  188.703192][ T9232]  x64_sys_call+0x2802/0x3000
[  188.703283][ T9232]  do_syscall_64+0xd2/0x200
[  188.703315][ T9232]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  188.703343][ T9232]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  188.703370][ T9232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.703399][ T9232] RIP: 0033:0x7f480770efc9
[  188.703489][ T9232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.703509][ T9232] RSP: 002b:00007f480616f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  188.703534][ T9232] RAX: ffffffffffffffda RBX: 00007f4807965fa0 RCX: 00007f480770efc9
[  188.703551][ T9232] RDX: 00000000fffffdd8 RSI: 0000200000000540 RDI: 0000000000000004
[  188.703567][ T9232] RBP: 00007f480616f090 R08: 0000000000000000 R09: 0000000000000000
[  188.703610][ T9232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  188.703622][ T9232] R13: 00007f4807966038 R14: 00007f4807965fa0 R15: 00007ffeb0276e58
[  188.703646][ T9232]  </TASK>
[  189.040106][ T9249] lo speed is unknown, defaulting to 1000
[  189.098834][ T9249] lo speed is unknown, defaulting to 1000
[  189.236949][ T9258] 9pnet_fd: Insufficient options for proto=fd
[  189.255761][ T9260] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1778'.
[  189.281108][ T9261] netlink: 'syz.4.1776': attribute type 142 has an invalid length.
[  189.289160][ T9261] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1776'.
[  189.303785][ T9261] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1776'.
[  189.312790][ T9261] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1776'.
[  189.329053][ T9261] loop4: detected capacity change from 0 to 1024
[  189.413845][ T9261] EXT4-fs: Ignoring removed orlov option
[  189.421857][ T9261] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.975272][ T9273] netlink: 'syz.2.1781': attribute type 1 has an invalid length.
[  190.005456][ T9275] FAULT_INJECTION: forcing a failure.
[  190.005456][ T9275] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.018740][ T9275] CPU: 1 UID: 0 PID: 9275 Comm: syz.2.1782 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  190.018873][ T9275] Tainted: [W]=WARN
[  190.018882][ T9275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  190.018899][ T9275] Call Trace:
[  190.018907][ T9275]  <TASK>
[  190.018916][ T9275]  __dump_stack+0x1d/0x30
[  190.018946][ T9275]  dump_stack_lvl+0xe8/0x140
[  190.018968][ T9275]  dump_stack+0x15/0x1b
[  190.018990][ T9275]  should_fail_ex+0x265/0x280
[  190.019095][ T9275]  should_fail+0xb/0x20
[  190.019202][ T9275]  should_fail_usercopy+0x1a/0x20
[  190.019230][ T9275]  _copy_from_iter+0xd2/0xe80
[  190.019259][ T9275]  ? __build_skb_around+0x1ab/0x200
[  190.019293][ T9275]  ? __alloc_skb+0x223/0x320
[  190.019323][ T9275]  netlink_sendmsg+0x471/0x6b0
[  190.019389][ T9275]  ? __pfx_netlink_sendmsg+0x10/0x10
[  190.019430][ T9275]  __sock_sendmsg+0x145/0x180
[  190.019527][ T9275]  ____sys_sendmsg+0x31e/0x4e0
[  190.019568][ T9275]  ___sys_sendmsg+0x17b/0x1d0
[  190.019683][ T9275]  __x64_sys_sendmsg+0xd4/0x160
[  190.019790][ T9275]  x64_sys_call+0x191e/0x3000
[  190.019812][ T9275]  do_syscall_64+0xd2/0x200
[  190.019850][ T9275]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  190.019938][ T9275]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  190.019968][ T9275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.020037][ T9275] RIP: 0033:0x7f8e0d99efc9
[  190.020053][ T9275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.020077][ T9275] RSP: 002b:00007f8e0c407038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  190.020102][ T9275] RAX: ffffffffffffffda RBX: 00007f8e0dbf5fa0 RCX: 00007f8e0d99efc9
[  190.020119][ T9275] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000000000000003
[  190.020135][ T9275] RBP: 00007f8e0c407090 R08: 0000000000000000 R09: 0000000000000000
[  190.020222][ T9275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.020234][ T9275] R13: 00007f8e0dbf6038 R14: 00007f8e0dbf5fa0 R15: 00007ffd5f035d28
[  190.020255][ T9275]  </TASK>
[  190.332910][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.360400][ T9279] loop3: detected capacity change from 0 to 512
[  190.502432][ T9279] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.516413][ T9279] ext4 filesystem being mounted at /334/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.566580][ T9298] loop4: detected capacity change from 0 to 1024
[  190.605469][ T9292] netlink: 'syz.0.1788': attribute type 13 has an invalid length.
[  190.694361][ T9298] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  190.750875][ T9298] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #11: comm syz.4.1791: iget: bogus i_mode (1)
[  190.763352][ T9298] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1791: couldn't read orphan inode 11 (err -117)
[  190.777257][ T9298] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.794028][ T9308] netlink: 'syz.1.1793': attribute type 142 has an invalid length.
[  190.867572][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.384132][ T9329] lo speed is unknown, defaulting to 1000
[  191.447581][ T9329] lo speed is unknown, defaulting to 1000
[  191.661668][ T9330] syzkaller0: entered allmulticast mode
[  192.086089][ T9340] __nla_validate_parse: 8 callbacks suppressed
[  192.086104][ T9340] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1802'.
[  192.097789][   T29] kauditd_printk_skb: 157 callbacks suppressed
[  192.097809][   T29] audit: type=1400 audit(1760820161.275:6250): avc:  denied  { write } for  pid=9335 comm="syz.0.1801" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  192.156683][ T9323] syzkaller0: left allmulticast mode
[  192.184362][ T9347] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1804'.
[  192.300280][ T9353] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1807'.
[  192.335873][ T9347] lo speed is unknown, defaulting to 1000
[  192.376849][ T9357] 8021q: adding VLAN 0 to HW filter on device bond0
[  192.385246][ T9357] 8021q: adding VLAN 0 to HW filter on device team0
[  192.393943][ T9357] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  192.409584][ T3400] lo speed is unknown, defaulting to 1000
[  192.410053][ T9347] lo speed is unknown, defaulting to 1000
[  192.415456][ T3400] syz2: Port: 1 Link ACTIVE
[  192.573912][ T9363] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1810'.
[  192.662307][ T9367] loop2: detected capacity change from 0 to 128
[  192.670615][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.684404][ T9370] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1812'.
[  192.914626][ T9377] lo speed is unknown, defaulting to 1000
[  192.978300][ T9377] lo speed is unknown, defaulting to 1000
[  193.296677][ T9384] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1815'.
[  193.391715][ T9386] syzkaller0: entered allmulticast mode
[  193.566834][   T29] audit: type=1400 audit(1760820162.735:6251): avc:  denied  { create } for  pid=9383 comm="syz.4.1816" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  193.681565][   T29] audit: type=1326 audit(1760820162.775:6252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9390 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f44d2265e67 code=0x7ffc0000
[  193.705041][   T29] audit: type=1326 audit(1760820162.775:6253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9390 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f44d220b099 code=0x7ffc0000
[  193.714329][ T9373] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1811'.
[  193.728433][   T29] audit: type=1326 audit(1760820162.775:6254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9390 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f44d2265e67 code=0x7ffc0000
[  193.728475][   T29] audit: type=1326 audit(1760820162.775:6255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9390 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f44d220b099 code=0x7ffc0000
[  193.728562][   T29] audit: type=1326 audit(1760820162.775:6256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9390 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  193.728597][   T29] audit: type=1326 audit(1760820162.775:6257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9390 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  193.728633][   T29] audit: type=1326 audit(1760820162.775:6258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9390 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  193.728677][   T29] audit: type=1326 audit(1760820162.775:6259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9390 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  193.752535][ T9393] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  193.847067][ T9395] FAULT_INJECTION: forcing a failure.
[  193.847067][ T9395] name failslab, interval 1, probability 0, space 0, times 0
[  193.902787][ T9395] CPU: 0 UID: 0 PID: 9395 Comm: syz.4.1819 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  193.902831][ T9395] Tainted: [W]=WARN
[  193.902917][ T9395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  193.902932][ T9395] Call Trace:
[  193.902947][ T9395]  <TASK>
[  193.902958][ T9395]  __dump_stack+0x1d/0x30
[  193.902987][ T9395]  dump_stack_lvl+0xe8/0x140
[  193.903016][ T9395]  dump_stack+0x15/0x1b
[  193.903036][ T9395]  should_fail_ex+0x265/0x280
[  193.903108][ T9395]  ? audit_log_d_path+0x8d/0x150
[  193.903137][ T9395]  should_failslab+0x8c/0xb0
[  193.903175][ T9395]  __kmalloc_cache_noprof+0x4c/0x4a0
[  193.903218][ T9395]  audit_log_d_path+0x8d/0x150
[  193.903247][ T9395]  audit_log_d_path_exe+0x42/0x70
[  193.903281][ T9395]  audit_log_task+0x1e9/0x250
[  193.903321][ T9395]  audit_seccomp+0x61/0x100
[  193.903403][ T9395]  ? __seccomp_filter+0x82d/0x1250
[  193.903431][ T9395]  __seccomp_filter+0x83e/0x1250
[  193.903460][ T9395]  ? do_epoll_wait+0x90c/0x940
[  193.903519][ T9395]  __secure_computing+0x82/0x150
[  193.903622][ T9395]  syscall_trace_enter+0xcf/0x1e0
[  193.903744][ T9395]  do_syscall_64+0xac/0x200
[  193.903775][ T9395]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  193.903810][ T9395]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  193.903840][ T9395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.903927][ T9395] RIP: 0033:0x7f480770d9dc
[  193.903979][ T9395] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  193.904001][ T9395] RSP: 002b:00007f480616f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  193.904025][ T9395] RAX: ffffffffffffffda RBX: 00007f4807965fa0 RCX: 00007f480770d9dc
[  193.904043][ T9395] RDX: 000000000000000f RSI: 00007f480616f0a0 RDI: 0000000000000007
[  193.904060][ T9395] RBP: 00007f480616f090 R08: 0000000000000000 R09: 0000000000000000
[  193.904076][ T9395] R10: 0000000044001006 R11: 0000000000000246 R12: 0000000000000002
[  193.904089][ T9395] R13: 00007f4807966038 R14: 00007f4807965fa0 R15: 00007ffeb0276e58
[  193.904187][ T9395]  </TASK>
[  194.119244][ T9382] syzkaller0: left allmulticast mode
[  194.213752][ T9401] netlink: 'syz.2.1821': attribute type 1 has an invalid length.
[  194.221585][ T9401] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.1821'.
[  194.263150][ T9393] loop3: detected capacity change from 0 to 512
[  194.278390][ T9407] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9407 comm=syz.0.1822
[  194.290916][ T9407] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9407 comm=syz.0.1822
[  194.311757][ T9393] EXT4-fs: Ignoring removed oldalloc option
[  194.328574][ T9393] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  194.393176][ T9393] EXT4-fs (loop3): 1 truncate cleaned up
[  194.412372][ T9393] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.460389][ T9416] FAULT_INJECTION: forcing a failure.
[  194.460389][ T9416] name failslab, interval 1, probability 0, space 0, times 0
[  194.473128][ T9416] CPU: 1 UID: 0 PID: 9416 Comm: syz.0.1825 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  194.473167][ T9416] Tainted: [W]=WARN
[  194.473175][ T9416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  194.473188][ T9416] Call Trace:
[  194.473196][ T9416]  <TASK>
[  194.473206][ T9416]  __dump_stack+0x1d/0x30
[  194.473234][ T9416]  dump_stack_lvl+0xe8/0x140
[  194.473272][ T9416]  dump_stack+0x15/0x1b
[  194.473358][ T9416]  should_fail_ex+0x265/0x280
[  194.473396][ T9416]  should_failslab+0x8c/0xb0
[  194.473432][ T9416]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  194.473501][ T9416]  ? __alloc_skb+0x101/0x320
[  194.473531][ T9416]  __alloc_skb+0x101/0x320
[  194.473593][ T9416]  tipc_msg_create+0x47/0x230
[  194.473638][ T9416]  tipc_group_proto_xmit+0xb7/0x2f0
[  194.473689][ T9416]  tipc_group_update_rcv_win+0x49b/0x730
[  194.473775][ T9416]  tipc_recvmsg+0x6be/0x9d0
[  194.473821][ T9416]  ? __pfx_tipc_recvmsg+0x10/0x10
[  194.473854][ T9416]  sock_recvmsg+0x139/0x170
[  194.473910][ T9416]  ____sys_recvmsg+0xf5/0x280
[  194.473956][ T9416]  ___sys_recvmsg+0x11f/0x370
[  194.474070][ T9416]  do_recvmmsg+0x1ef/0x540
[  194.474106][ T9416]  ? fput+0x8f/0xc0
[  194.474143][ T9416]  __x64_sys_recvmmsg+0xe5/0x170
[  194.474179][ T9416]  x64_sys_call+0x27aa/0x3000
[  194.474223][ T9416]  do_syscall_64+0xd2/0x200
[  194.474327][ T9416]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  194.474361][ T9416]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  194.474391][ T9416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.474414][ T9416] RIP: 0033:0x7f284d8fefc9
[  194.474429][ T9416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.474479][ T9416] RSP: 002b:00007f284c346038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  194.474505][ T9416] RAX: ffffffffffffffda RBX: 00007f284db56090 RCX: 00007f284d8fefc9
[  194.474522][ T9416] RDX: 0000000000000001 RSI: 0000200000004a40 RDI: 0000000000000008
[  194.474539][ T9416] RBP: 00007f284c346090 R08: 0000000000000000 R09: 0000000000000000
[  194.474556][ T9416] R10: 0000000040000001 R11: 0000000000000246 R12: 0000000000000001
[  194.474574][ T9416] R13: 00007f284db56128 R14: 00007f284db56090 R15: 00007ffcc53647b8
[  194.474593][ T9416]  </TASK>
[  194.789639][ T9396] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1818'.
[  194.995638][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.170821][ T9438] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1833'.
[  195.185180][ T9441] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  195.191212][ T9438] syzkaller0: entered allmulticast mode
[  195.202692][ T9441] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  195.243680][ T9441] vlan2: entered allmulticast mode
[  195.255732][ T9443] loop0: detected capacity change from 0 to 512
[  195.274253][ T9443] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.299592][ T9443] ext4 filesystem being mounted at /415/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.341032][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.361581][ T9447] netlink: 'syz.1.1836': attribute type 142 has an invalid length.
[  195.429633][ T9450] netlink: 'syz.0.1837': attribute type 142 has an invalid length.
[  195.445510][ T9450] loop0: detected capacity change from 0 to 1024
[  195.458463][ T9450] EXT4-fs: Ignoring removed orlov option
[  195.474528][ T9450] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.025467][ T9437] syzkaller0: left allmulticast mode
[  196.067436][ T9464] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  196.149744][ T9472] lo speed is unknown, defaulting to 1000
[  196.214111][ T9472] lo speed is unknown, defaulting to 1000
[  196.380572][ T9474] 8021q: adding VLAN 0 to HW filter on device bond0
[  196.406762][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.427916][ T9474] 8021q: adding VLAN 0 to HW filter on device team0
[  196.466180][ T9474] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  196.849542][ T9484] netlink: 'syz.3.1846': attribute type 1 has an invalid length.
[  197.092097][ T9482] loop4: detected capacity change from 0 to 512
[  197.313100][ T9482] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.372721][   T29] kauditd_printk_skb: 105 callbacks suppressed
[  197.372741][   T29] audit: type=1326 audit(1760820166.545:6365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9490 comm="syz.3.1848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  197.403114][   T29] audit: type=1326 audit(1760820166.545:6366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9490 comm="syz.3.1848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  197.427185][   T29] audit: type=1326 audit(1760820166.545:6367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9490 comm="syz.3.1848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  197.451386][   T29] audit: type=1326 audit(1760820166.545:6368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9490 comm="syz.3.1848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  197.475465][   T29] audit: type=1326 audit(1760820166.545:6369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9490 comm="syz.3.1848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d226efc9 code=0x7ffc0000
[  197.605462][ T9482] ext4 filesystem being mounted at /371/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.783088][ T9499] netlink: 'syz.1.1851': attribute type 1 has an invalid length.
[  197.790861][ T9499] __nla_validate_parse: 6 callbacks suppressed
[  197.790944][ T9499] netlink: 5452 bytes leftover after parsing attributes in process `syz.1.1851'.
[  197.799856][   T29] audit: type=1400 audit(1760820166.935:6370): avc:  denied  { setattr } for  pid=9481 comm="syz.4.1845" name="file0" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  197.833080][ T9501] netlink: 112 bytes leftover after parsing attributes in process `syz.0.1850'.
[  197.876552][   T29] audit: type=1326 audit(1760820167.055:6371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.1.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  197.918954][   T29] audit: type=1326 audit(1760820167.085:6372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.1.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  197.942500][   T29] audit: type=1326 audit(1760820167.085:6373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.1.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  197.965970][   T29] audit: type=1326 audit(1760820167.085:6374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.1.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba3043efc9 code=0x7ffc0000
[  198.073446][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.086484][ T9515] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  198.107462][ T9515] loop3: detected capacity change from 0 to 512
[  198.114853][ T9515] EXT4-fs: Ignoring removed oldalloc option
[  198.121618][ T9508] netlink: 'syz.0.1854': attribute type 13 has an invalid length.
[  198.141132][ T9515] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  198.272510][ T9515] EXT4-fs (loop3): 1 truncate cleaned up
[  198.278732][ T9515] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.443987][ T9538] netlink: 92 bytes leftover after parsing attributes in process `syz.2.1865'.
[  198.512920][ T9542] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1857'.
[  198.993626][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.312972][ T9561] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1872'.
[  199.538328][ T9563] lo speed is unknown, defaulting to 1000
[  199.599585][ T9563] lo speed is unknown, defaulting to 1000
[  200.018961][ T9565] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1873'.
[  200.194524][ T9568] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1874'.
[  200.212311][ T9570] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9570 comm=syz.0.1875
[  200.225694][ T9570] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9570 comm=syz.0.1875
[  200.331855][ T9578] SELinux:  policydb version 0 does not match my version range 15-35
[  200.340497][ T9578] SELinux: failed to load policy
[  200.357640][ T9581] FAULT_INJECTION: forcing a failure.
[  200.357640][ T9581] name failslab, interval 1, probability 0, space 0, times 0
[  200.371040][ T9581] CPU: 0 UID: 0 PID: 9581 Comm: syz.2.1878 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  200.371083][ T9581] Tainted: [W]=WARN
[  200.371152][ T9581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  200.371169][ T9581] Call Trace:
[  200.371194][ T9581]  <TASK>
[  200.371203][ T9581]  __dump_stack+0x1d/0x30
[  200.371234][ T9581]  dump_stack_lvl+0xe8/0x140
[  200.371259][ T9581]  dump_stack+0x15/0x1b
[  200.371280][ T9581]  should_fail_ex+0x265/0x280
[  200.371407][ T9581]  should_failslab+0x8c/0xb0
[  200.371443][ T9581]  __kmalloc_cache_node_noprof+0x54/0x4a0
[  200.371483][ T9581]  ? __get_vm_area_node+0x106/0x1d0
[  200.371601][ T9581]  __get_vm_area_node+0x106/0x1d0
[  200.371641][ T9581]  __vmalloc_node_range_noprof+0x28c/0xed0
[  200.371683][ T9581]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[  200.371727][ T9581]  ? __rcu_read_unlock+0x4f/0x70
[  200.371817][ T9581]  ? terminate_walk+0x27f/0x2a0
[  200.371857][ T9581]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[  200.371925][ T9581]  __vmalloc_noprof+0x83/0xc0
[  200.371964][ T9581]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[  200.372054][ T9581]  bpf_prog_alloc_no_stats+0x47/0x3b0
[  200.372095][ T9581]  ? bpf_prog_alloc+0x2a/0x150
[  200.372136][ T9581]  bpf_prog_alloc+0x3c/0x150
[  200.372247][ T9581]  __get_filter+0x92/0x230
[  200.372284][ T9581]  sk_attach_filter+0x20/0xe0
[  200.372320][ T9581]  sk_setsockopt+0x1a25/0x20e0
[  200.372412][ T9581]  sock_setsockopt+0x40/0x50
[  200.372446][ T9581]  unix_setsockopt+0xe8/0x1e0
[  200.372479][ T9581]  ? __pfx_unix_setsockopt+0x10/0x10
[  200.372528][ T9581]  __sys_setsockopt+0x184/0x200
[  200.372566][ T9581]  __x64_sys_setsockopt+0x64/0x80
[  200.372603][ T9581]  x64_sys_call+0x20ec/0x3000
[  200.372654][ T9581]  do_syscall_64+0xd2/0x200
[  200.372686][ T9581]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  200.372721][ T9581]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  200.372779][ T9581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.372825][ T9581] RIP: 0033:0x7f8e0d99efc9
[  200.372845][ T9581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.372870][ T9581] RSP: 002b:00007f8e0c3e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  200.372895][ T9581] RAX: ffffffffffffffda RBX: 00007f8e0dbf6090 RCX: 00007f8e0d99efc9
[  200.372937][ T9581] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000005
[  200.372954][ T9581] RBP: 00007f8e0c3e6090 R08: 0000000000000010 R09: 0000000000000000
[  200.373018][ T9581] R10: 000020000002eff0 R11: 0000000000000246 R12: 0000000000000001
[  200.373035][ T9581] R13: 00007f8e0dbf6128 R14: 00007f8e0dbf6090 R15: 00007ffd5f035d28
[  200.373061][ T9581]  </TASK>
[  200.636328][ T9581] syz.2.1878: vmalloc error: size 4096, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  200.653064][ T9581] CPU: 0 UID: 0 PID: 9581 Comm: syz.2.1878 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  200.653105][ T9581] Tainted: [W]=WARN
[  200.653115][ T9581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  200.653201][ T9581] Call Trace:
[  200.653208][ T9581]  <TASK>
[  200.653217][ T9581]  __dump_stack+0x1d/0x30
[  200.653302][ T9581]  dump_stack_lvl+0xe8/0x140
[  200.653345][ T9581]  dump_stack+0x15/0x1b
[  200.653373][ T9581]  warn_alloc+0x12b/0x1a0
[  200.653419][ T9581]  __vmalloc_node_range_noprof+0x2b1/0xed0
[  200.653458][ T9581]  ? __rcu_read_unlock+0x4f/0x70
[  200.653520][ T9581]  ? terminate_walk+0x27f/0x2a0
[  200.653574][ T9581]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[  200.653615][ T9581]  __vmalloc_noprof+0x83/0xc0
[  200.653654][ T9581]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[  200.653764][ T9581]  bpf_prog_alloc_no_stats+0x47/0x3b0
[  200.653811][ T9581]  ? bpf_prog_alloc+0x2a/0x150
[  200.653853][ T9581]  bpf_prog_alloc+0x3c/0x150
[  200.653894][ T9581]  __get_filter+0x92/0x230
[  200.653931][ T9581]  sk_attach_filter+0x20/0xe0
[  200.654019][ T9581]  sk_setsockopt+0x1a25/0x20e0
[  200.654117][ T9581]  sock_setsockopt+0x40/0x50
[  200.654153][ T9581]  unix_setsockopt+0xe8/0x1e0
[  200.654187][ T9581]  ? __pfx_unix_setsockopt+0x10/0x10
[  200.654250][ T9581]  __sys_setsockopt+0x184/0x200
[  200.654283][ T9581]  __x64_sys_setsockopt+0x64/0x80
[  200.654376][ T9581]  x64_sys_call+0x20ec/0x3000
[  200.654412][ T9581]  do_syscall_64+0xd2/0x200
[  200.654440][ T9581]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  200.654472][ T9581]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  200.654514][ T9581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.654537][ T9581] RIP: 0033:0x7f8e0d99efc9
[  200.654557][ T9581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.654582][ T9581] RSP: 002b:00007f8e0c3e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  200.654677][ T9581] RAX: ffffffffffffffda RBX: 00007f8e0dbf6090 RCX: 00007f8e0d99efc9
[  200.654692][ T9581] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000005
[  200.654708][ T9581] RBP: 00007f8e0c3e6090 R08: 0000000000000010 R09: 0000000000000000
[  200.654725][ T9581] R10: 000020000002eff0 R11: 0000000000000246 R12: 0000000000000001
[  200.654742][ T9581] R13: 00007f8e0dbf6128 R14: 00007f8e0dbf6090 R15: 00007ffd5f035d28
[  200.654765][ T9581]  </TASK>
[  200.654773][ T9581] Mem-Info:
[  200.903002][ T9581] active_anon:20503 inactive_anon:4779 isolated_anon:0
[  200.903002][ T9581]  active_file:18421 inactive_file:2834 isolated_file:0
[  200.903002][ T9581]  unevictable:0 dirty:380 writeback:0
[  200.903002][ T9581]  slab_reclaimable:3380 slab_unreclaimable:94401
[  200.903002][ T9581]  mapped:29525 shmem:20933 pagetables:1140
[  200.903002][ T9581]  sec_pagetables:0 bounce:0
[  200.903002][ T9581]  kernel_misc_reclaimable:0
[  200.903002][ T9581]  free:1787088 free_pcp:11794 free_cma:0
[  200.949392][ T9581] Node 0 active_anon:82012kB inactive_anon:19116kB active_file:73684kB inactive_file:11336kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:118100kB dirty:1520kB writeback:0kB shmem:83732kB kernel_stack:4528kB pagetables:4560kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  200.977957][ T9581] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  201.008443][ T9581] lowmem_reserve[]: 0 2883 7862 7862
[  201.013777][ T9581] Node 0 DMA32 free:2949156kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2952688kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:3532kB free_cma:0kB
[  201.045860][ T9581] lowmem_reserve[]: 0 0 4978 4978
[  201.051030][ T9581] Node 0 Normal free:4183836kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:82012kB inactive_anon:19116kB active_file:73684kB inactive_file:11336kB unevictable:0kB writepending:1520kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:43628kB local_pcp:11144kB free_cma:0kB
[  201.085304][ T9581] lowmem_reserve[]: 0 0 0 0
[  201.089859][ T9581] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  201.103446][ T9581] Node 0 DMA32: 3*4kB (M) 3*8kB (M) 6*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949156kB
[  201.119605][ T9581] Node 0 Normal: 41*4kB (UME) 427*8kB (UM) 286*16kB (UM) 328*32kB (UM) 396*64kB (UM) 197*128kB (UME) 137*256kB (UM) 86*512kB (U) 87*1024kB (UM) 57*2048kB (UME) 935*4096kB (UM) = 4183900kB
[  201.139123][ T9581] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  201.148518][ T9581] 42630 total pagecache pages
[  201.153935][ T9581] 430 pages in swap cache
[  201.158271][ T9581] Free swap  = 69868kB
[  201.162367][ T9581] Total swap = 124996kB
[  201.166576][ T9581] 2097051 pages RAM
[  201.170384][ T9581] 0 pages HighMem/MovableOnly
[  201.175830][ T9581] 80479 pages reserved
[  201.223573][ T9592] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  201.230189][ T9592] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  201.237869][ T9592] vhci_hcd vhci_hcd.0: Device attached
[  201.245722][ T9593] vhci_hcd: connection closed
[  201.245945][ T3548] vhci_hcd: stop threads
[  201.254960][ T3548] vhci_hcd: release socket
[  201.259396][ T3548] vhci_hcd: disconnect device
[  201.290852][ T9597] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1885'.
[  201.357393][ T9604] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1887'.
[  201.444397][ T9587] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1882'.
[  201.454318][ T9608] FAULT_INJECTION: forcing a failure.
[  201.454318][ T9608] name failslab, interval 1, probability 0, space 0, times 0
[  201.467036][ T9608] CPU: 0 UID: 0 PID: 9608 Comm: syz.4.1888 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  201.467076][ T9608] Tainted: [W]=WARN
[  201.467085][ T9608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  201.467101][ T9608] Call Trace:
[  201.467109][ T9608]  <TASK>
[  201.467208][ T9608]  __dump_stack+0x1d/0x30
[  201.467235][ T9608]  dump_stack_lvl+0xe8/0x140
[  201.467261][ T9608]  dump_stack+0x15/0x1b
[  201.467304][ T9608]  should_fail_ex+0x265/0x280
[  201.467367][ T9608]  should_failslab+0x8c/0xb0
[  201.467397][ T9608]  __kmalloc_noprof+0xa5/0x570
[  201.467459][ T9608]  ? security_sk_alloc+0x52/0x120
[  201.467490][ T9608]  security_sk_alloc+0x52/0x120
[  201.467520][ T9608]  sk_prot_alloc+0xc2/0x190
[  201.467630][ T9608]  sk_alloc+0x34/0x360
[  201.467657][ T9608]  unix_create1+0xa5/0x430
[  201.467721][ T9608]  ? inode_init_always_gfp+0x4cd/0x500
[  201.467755][ T9608]  unix_create+0x11f/0x150
[  201.467784][ T9608]  __sock_create+0x2ec/0x5b0
[  201.467827][ T9608]  __sys_socketpair+0x170/0x430
[  201.467923][ T9608]  ? ksys_write+0x192/0x1a0
[  201.467950][ T9608]  __x64_sys_socketpair+0x52/0x60
[  201.467975][ T9608]  x64_sys_call+0x2bf6/0x3000
[  201.468069][ T9608]  do_syscall_64+0xd2/0x200
[  201.468094][ T9608]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  201.468130][ T9608]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  201.468225][ T9608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.468255][ T9608] RIP: 0033:0x7f4807710f1a
[  201.468281][ T9608] Code: 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 35 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.468300][ T9608] RSP: 002b:00007f480616ef78 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  201.468320][ T9608] RAX: ffffffffffffffda RBX: 00007f4807965f00 RCX: 00007f4807710f1a
[  201.468358][ T9608] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[  201.468370][ T9608] RBP: 00007f480616f090 R08: 0000000000000000 R09: 0000000000000000
[  201.468450][ T9608] R10: 00007f480616ef98 R11: 0000000000000246 R12: 0000000000000001
[  201.468465][ T9608] R13: 00007f4807966038 R14: 00007f4807965fa0 R15: 00007ffeb0276e58
[  201.468492][ T9608]  </TASK>
[  201.926765][ T9615] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9615 comm=syz.0.1890
[  201.931826][ T9613] lo speed is unknown, defaulting to 1000
[  201.939257][ T9615] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9615 comm=syz.0.1890
[  201.980836][ T9613] lo speed is unknown, defaulting to 1000
[  202.092935][ T9622] 8021q: adding VLAN 0 to HW filter on device bond0
[  202.110174][ T9622] 8021q: adding VLAN 0 to HW filter on device team0
[  202.120787][ T9622] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  202.266968][ T9627] netlink: 'syz.4.1895': attribute type 13 has an invalid length.
[  202.337054][ T9632] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  202.356212][ T9634] netlink: 'syz.4.1897': attribute type 1 has an invalid length.
[  202.394852][ T3400] hid_parser_main: 48 callbacks suppressed
[  202.394886][ T3400] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  202.408275][ T3400] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  202.415850][ T3400] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  202.437719][ T3400] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  202.445231][ T3400] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  202.452666][ T3400] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  202.460078][ T3400] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  202.467536][ T3400] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  202.474953][ T3400] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  202.482401][ T3400] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  202.490479][ T9642] netlink: 'syz.2.1899': attribute type 1 has an invalid length.
[  202.499416][ T3400] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  202.535673][ T9646] netlink: 'syz.2.1902': attribute type 1 has an invalid length.
[  202.624455][   T29] kauditd_printk_skb: 196 callbacks suppressed
[  202.624475][   T29] audit: type=1326 audit(1760820171.765:6571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9649 comm="syz.2.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  202.654983][   T29] audit: type=1326 audit(1760820171.765:6572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9649 comm="syz.2.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  202.679181][   T29] audit: type=1326 audit(1760820171.765:6573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9649 comm="syz.2.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  202.703541][   T29] audit: type=1326 audit(1760820171.765:6574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9649 comm="syz.2.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  202.727691][   T29] audit: type=1326 audit(1760820171.765:6575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9649 comm="syz.2.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  202.751824][   T29] audit: type=1326 audit(1760820171.765:6576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9649 comm="syz.2.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  202.775933][   T29] audit: type=1326 audit(1760820171.775:6577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9649 comm="syz.2.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  202.800225][   T29] audit: type=1326 audit(1760820171.775:6578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9649 comm="syz.2.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  202.824383][   T29] audit: type=1326 audit(1760820171.775:6579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9649 comm="syz.2.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  202.848640][   T29] audit: type=1326 audit(1760820171.775:6580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9649 comm="syz.2.1903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  202.898941][ T9654] Driver unsupported XDP return value 0 on prog  (id 1195) dev N/A, expect packet loss!
[  202.978775][ T9662] loop4: detected capacity change from 0 to 256
[  203.015178][ T9665] netlink: 'syz.2.1909': attribute type 1 has an invalid length.
[  203.022999][ T9665] __nla_validate_parse: 4 callbacks suppressed
[  203.023018][ T9665] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.1909'.
[  203.041330][ T9662] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  203.063506][ T9662] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  203.072157][ T9662] FAT-fs (loop4): Filesystem has been set read-only
[  203.195434][ T9673] netlink: 'syz.2.1913': attribute type 1 has an invalid length.
[  203.203238][ T9673] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.1913'.
[  203.326728][ T9688] loop3: detected capacity change from 0 to 512
[  203.401981][ T9688] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.451599][ T9696] netlink: 'syz.4.1915': attribute type 13 has an invalid length.
[  203.467241][ T9688] ext4 filesystem being mounted at /358/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.481148][ T9688] FAULT_INJECTION: forcing a failure.
[  203.481148][ T9688] name failslab, interval 1, probability 0, space 0, times 0
[  203.493990][ T9688] CPU: 1 UID: 0 PID: 9688 Comm: syz.3.1921 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  203.494031][ T9688] Tainted: [W]=WARN
[  203.494040][ T9688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  203.494058][ T9688] Call Trace:
[  203.494066][ T9688]  <TASK>
[  203.494077][ T9688]  __dump_stack+0x1d/0x30
[  203.494109][ T9688]  dump_stack_lvl+0xe8/0x140
[  203.494130][ T9688]  dump_stack+0x15/0x1b
[  203.494147][ T9688]  should_fail_ex+0x265/0x280
[  203.494186][ T9688]  ? __pfx_ext4_alloc_inode+0x10/0x10
[  203.494216][ T9688]  should_failslab+0x8c/0xb0
[  203.494284][ T9688]  kmem_cache_alloc_lru_noprof+0x55/0x490
[  203.494312][ T9688]  ? ext4_alloc_inode+0x38/0x310
[  203.494336][ T9688]  ? __pfx_ext4_alloc_inode+0x10/0x10
[  203.494367][ T9688]  ext4_alloc_inode+0x38/0x310
[  203.494396][ T9688]  ? __pfx_ext4_alloc_inode+0x10/0x10
[  203.494449][ T9688]  alloc_inode+0x40/0x170
[  203.494475][ T9688]  iget_locked+0xf9/0x5d0
[  203.494511][ T9688]  ? __ext4_iget+0x8a/0x22d0
[  203.494561][ T9688]  __ext4_iget+0x152/0x22d0
[  203.494583][ T9688]  ? d_alloc_parallel+0xbc4/0xc70
[  203.494625][ T9688]  ext4_lookup+0x161/0x390
[  203.494789][ T9688]  __lookup_slow+0x193/0x250
[  203.494829][ T9688]  lookup_slow+0x3c/0x60
[  203.494873][ T9688]  walk_component+0x1ec/0x220
[  203.494916][ T9688]  path_lookupat+0xfe/0x2a0
[  203.495030][ T9688]  filename_lookup+0x147/0x340
[  203.495094][ T9688]  do_linkat+0xd2/0x600
[  203.495116][ T9688]  ? should_fail_usercopy+0x1a/0x20
[  203.495136][ T9688]  ? strncpy_from_user+0x13a/0x230
[  203.495182][ T9688]  __x64_sys_linkat+0x85/0xa0
[  203.495281][ T9688]  x64_sys_call+0x28ff/0x3000
[  203.495303][ T9688]  do_syscall_64+0xd2/0x200
[  203.495336][ T9688]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  203.495436][ T9688]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  203.495465][ T9688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.495495][ T9688] RIP: 0033:0x7f44d226efc9
[  203.495520][ T9688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.495554][ T9688] RSP: 002b:00007f44d0cd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000109
[  203.495580][ T9688] RAX: ffffffffffffffda RBX: 00007f44d24c5fa0 RCX: 00007f44d226efc9
[  203.495598][ T9688] RDX: ffffffffffffff9c RSI: 00002000000006c0 RDI: ffffffffffffff9c
[  203.495611][ T9688] RBP: 00007f44d0cd7090 R08: 0000000000000000 R09: 0000000000000000
[  203.495623][ T9688] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[  203.495635][ T9688] R13: 00007f44d24c6038 R14: 00007f44d24c5fa0 R15: 00007fffe5286d98
[  203.495711][ T9688]  </TASK>
[  203.496855][ T9692] FAULT_INJECTION: forcing a failure.
[  203.496855][ T9692] name failslab, interval 1, probability 0, space 0, times 0
[  203.767091][ T9692] CPU: 1 UID: 0 PID: 9692 Comm: syz.2.1917 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  203.767121][ T9692] Tainted: [W]=WARN
[  203.767128][ T9692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  203.767140][ T9692] Call Trace:
[  203.767147][ T9692]  <TASK>
[  203.767153][ T9692]  __dump_stack+0x1d/0x30
[  203.767190][ T9692]  dump_stack_lvl+0xe8/0x140
[  203.767207][ T9692]  dump_stack+0x15/0x1b
[  203.767222][ T9692]  should_fail_ex+0x265/0x280
[  203.767290][ T9692]  should_failslab+0x8c/0xb0
[  203.767315][ T9692]  kmem_cache_alloc_noprof+0x50/0x480
[  203.767390][ T9692]  ? skb_clone+0x151/0x1f0
[  203.767417][ T9692]  skb_clone+0x151/0x1f0
[  203.767522][ T9692]  __netlink_deliver_tap+0x2c9/0x500
[  203.767564][ T9692]  netlink_dump+0x836/0x8a0
[  203.767604][ T9692]  __netlink_dump_start+0x43e/0x520
[  203.767679][ T9692]  xsk_diag_handler_dump+0xc8/0x100
[  203.767711][ T9692]  ? __pfx_xsk_diag_dump+0x10/0x10
[  203.767742][ T9692]  ? __pfx_xsk_diag_handler_dump+0x10/0x10
[  203.767777][ T9692]  sock_diag_rcv_msg+0x288/0x2c0
[  203.767866][ T9692]  netlink_rcv_skb+0x123/0x220
[  203.767895][ T9692]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  203.767930][ T9692]  sock_diag_rcv+0x1c/0x30
[  203.767956][ T9692]  netlink_unicast+0x5c0/0x690
[  203.768047][ T9692]  netlink_sendmsg+0x58b/0x6b0
[  203.768075][ T9692]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.768102][ T9692]  __sock_sendmsg+0x145/0x180
[  203.768130][ T9692]  sock_write_iter+0x1a7/0x1f0
[  203.768165][ T9692]  do_iter_readv_writev+0x4a1/0x540
[  203.768254][ T9692]  vfs_writev+0x2df/0x8b0
[  203.768291][ T9692]  do_writev+0xe7/0x210
[  203.768395][ T9692]  __x64_sys_writev+0x45/0x50
[  203.768419][ T9692]  x64_sys_call+0x1e9a/0x3000
[  203.768490][ T9692]  do_syscall_64+0xd2/0x200
[  203.768524][ T9692]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  203.768550][ T9692]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  203.768570][ T9692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.768589][ T9692] RIP: 0033:0x7f8e0d99efc9
[  203.768618][ T9692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.768642][ T9692] RSP: 002b:00007f8e0c3e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  203.768740][ T9692] RAX: ffffffffffffffda RBX: 00007f8e0dbf6090 RCX: 00007f8e0d99efc9
[  203.768751][ T9692] RDX: 0000000000000001 RSI: 0000200000000100 RDI: 0000000000000004
[  203.768762][ T9692] RBP: 00007f8e0c3e6090 R08: 0000000000000000 R09: 0000000000000000
[  203.768773][ T9692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  203.768787][ T9692] R13: 00007f8e0dbf6128 R14: 00007f8e0dbf6090 R15: 00007ffd5f035d28
[  203.768805][ T9692]  </TASK>
[  203.769962][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.110939][ T9708] netlink: 'syz.3.1922': attribute type 1 has an invalid length.
[  204.118819][ T9708] netlink: 5452 bytes leftover after parsing attributes in process `syz.3.1922'.
[  204.184562][ T9714] netlink: 'syz.1.1928': attribute type 1 has an invalid length.
[  204.192395][ T9714] netlink: 5452 bytes leftover after parsing attributes in process `syz.1.1928'.
[  204.263924][ T9710] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1926'.
[  204.287139][ T9710] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1926'.
[  204.365684][ T9720] netlink: 'syz.1.1931': attribute type 1 has an invalid length.
[  204.373523][ T9720] netlink: 5452 bytes leftover after parsing attributes in process `syz.1.1931'.
[  204.394217][ T9723] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1932'.
[  204.543982][ T9721] loop3: detected capacity change from 0 to 2048
[  204.661281][ T9727] lo speed is unknown, defaulting to 1000
[  204.752095][ T9727] lo speed is unknown, defaulting to 1000
[  205.364133][ T9721] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.576193][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.797017][ T9177] lo speed is unknown, defaulting to 1000
[  205.803579][ T9177] syz2: Port: 1 Link DOWN
[  205.844080][ T9754] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9754 comm=syz.3.1942
[  205.856693][ T9754] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9754 comm=syz.3.1942
[  205.925984][ T9765] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9765 comm=syz.1.1947
[  205.938615][ T9765] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9765 comm=syz.1.1947
[  205.980786][ T9773] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  205.995000][ T9773] loop3: detected capacity change from 0 to 512
[  206.001681][ T9773] EXT4-fs: Ignoring removed oldalloc option
[  206.009447][ T9773] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  206.019602][ T9772] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1951'.
[  206.021819][ T9773] EXT4-fs (loop3): 1 truncate cleaned up
[  206.035096][ T9773] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  206.109202][ T9785] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1949'.
[  206.227581][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.331728][ T9795] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9795 comm=syz.2.1956
[  206.345119][ T9795] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9795 comm=syz.2.1956
[  206.662961][ T9805] loop0: detected capacity change from 0 to 2048
[  206.756308][ T9805] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  206.865190][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.911500][ T9811] loop0: detected capacity change from 0 to 1024
[  206.918209][ T9811] EXT4-fs: Ignoring removed orlov option
[  206.928648][ T9811] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.972691][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.018256][ T9826] loop4: detected capacity change from 0 to 128
[  207.025747][ T9826] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  207.039193][ T9826] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  207.053780][ T9824] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  207.069294][ T9826] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  207.069325][ T9826] FAT-fs (loop4): Filesystem has been set read-only
[  207.091197][ T9824] loop0: detected capacity change from 0 to 512
[  207.091871][ T9824] EXT4-fs: Ignoring removed oldalloc option
[  207.092505][ T9824] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  207.172632][ T9824] EXT4-fs (loop0): 1 truncate cleaned up
[  207.178755][ T9824] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.205374][ T9837] loop3: detected capacity change from 0 to 1024
[  207.225463][ T9837] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  207.244368][ T9839] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9839 comm=syz.4.1972
[  207.257631][ T9839] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9839 comm=syz.4.1972
[  207.285010][ T9837] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #11: comm syz.3.1973: iget: bogus i_mode (1)
[  207.316855][ T9837] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1973: couldn't read orphan inode 11 (err -117)
[  207.329284][ T9837] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.355089][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.476216][ T9853] loop0: detected capacity change from 0 to 128
[  207.680240][ T9853] bio_check_eod: 19 callbacks suppressed
[  207.680272][ T9853] syz.0.1976: attempt to access beyond end of device
[  207.680272][ T9853] loop0: rw=2049, sector=145, nr_sectors = 8 limit=128
[  207.800030][ T9853] syz.0.1976: attempt to access beyond end of device
[  207.800030][ T9853] loop0: rw=2049, sector=161, nr_sectors = 8 limit=128
[  207.878832][ T9853] syz.0.1976: attempt to access beyond end of device
[  207.878832][ T9853] loop0: rw=2049, sector=177, nr_sectors = 24 limit=128
[  207.903362][ T9853] syz.0.1976: attempt to access beyond end of device
[  207.903362][ T9853] loop0: rw=2049, sector=209, nr_sectors = 8 limit=128
[  207.916993][ T9853] syz.0.1976: attempt to access beyond end of device
[  207.916993][ T9853] loop0: rw=2049, sector=225, nr_sectors = 8 limit=128
[  207.931446][ T9853] syz.0.1976: attempt to access beyond end of device
[  207.931446][ T9853] loop0: rw=2049, sector=241, nr_sectors = 8 limit=128
[  207.945107][ T9853] syz.0.1976: attempt to access beyond end of device
[  207.945107][ T9853] loop0: rw=2049, sector=257, nr_sectors = 8 limit=128
[  207.959343][ T9853] syz.0.1976: attempt to access beyond end of device
[  207.959343][ T9853] loop0: rw=2049, sector=273, nr_sectors = 8 limit=128
[  207.973715][ T9853] syz.0.1976: attempt to access beyond end of device
[  207.973715][ T9853] loop0: rw=2049, sector=289, nr_sectors = 8 limit=128
[  208.135670][ T9859] validate_nla: 5 callbacks suppressed
[  208.135688][ T9859] netlink: 'syz.0.1977': attribute type 142 has an invalid length.
[  208.149163][ T9859] __nla_validate_parse: 6 callbacks suppressed
[  208.149182][ T9859] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1977'.
[  208.189935][ T9859] loop0: detected capacity change from 0 to 1024
[  208.196854][ T9859] EXT4-fs: Ignoring removed orlov option
[  208.203575][   T29] kauditd_printk_skb: 151 callbacks suppressed
[  208.203591][   T29] audit: type=1326 audit(1760820177.385:6730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9860 comm="syz.2.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  208.233324][   T29] audit: type=1326 audit(1760820177.385:6731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9860 comm="syz.2.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  208.270942][   T29] audit: type=1326 audit(1760820177.445:6732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9860 comm="syz.2.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  208.294428][   T29] audit: type=1326 audit(1760820177.445:6733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9860 comm="syz.2.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  208.317973][   T29] audit: type=1326 audit(1760820177.445:6734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9860 comm="syz.2.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  208.341458][   T29] audit: type=1326 audit(1760820177.445:6735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9860 comm="syz.2.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  208.341953][ T9859] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.364945][   T29] audit: type=1326 audit(1760820177.445:6736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9860 comm="syz.2.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  208.365068][   T29] audit: type=1326 audit(1760820177.445:6737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9860 comm="syz.2.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8e0d99d810 code=0x7ffc0000
[  208.365103][   T29] audit: type=1326 audit(1760820177.445:6738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9860 comm="syz.2.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f8e0d9a07f7 code=0x7ffc0000
[  208.365192][   T29] audit: type=1326 audit(1760820177.445:6739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9860 comm="syz.2.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8e0d99efc9 code=0x7ffc0000
[  208.401693][ T9861] loop2: detected capacity change from 0 to 256
[  208.435407][ T9868] netlink: 'syz.4.1979': attribute type 1 has an invalid length.
[  208.484959][ T9837] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1973'.
[  208.487212][ T9868] netlink: 5452 bytes leftover after parsing attributes in process `syz.4.1979'.
[  208.505317][ T9861] FAT-fs (loop2): bogus number of FAT sectors
[  208.511448][ T9861] FAT-fs (loop2): Can't find a valid FAT filesystem
[  208.526013][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.613271][ T9878] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1983'.
[  208.620153][ T9875] SELinux: ebitmap: truncated map
[  208.629262][ T9875] SELinux: failed to load policy
[  208.655080][ T9885] netlink: 'syz.2.1985': attribute type 142 has an invalid length.
[  208.663118][ T9885] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1985'.
[  208.673341][ T9885] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1985'.
[  208.682295][ T9885] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1985'.
[  208.703567][ T9885] loop2: detected capacity change from 0 to 1024
[  208.710210][ T9885] EXT4-fs: Ignoring removed orlov option
[  208.715969][ T9888] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  208.718205][ T9885] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.752286][ T9881] netlink: 'syz.1.1984': attribute type 13 has an invalid length.
[  208.931329][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.978406][ T3400] hid_parser_main: 19 callbacks suppressed
[  208.978426][ T3400] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  208.991815][ T3400] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  208.999222][ T3400] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  209.007511][ T3400] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  209.015080][ T3400] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  209.022561][ T3400] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  209.030138][ T3400] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  209.037728][ T3400] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  209.045182][ T3400] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  209.052666][ T3400] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  209.061744][ T9908] netlink: 'syz.2.1992': attribute type 1 has an invalid length.
[  209.069554][ T9908] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.1992'.
[  209.146538][ T3400] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  209.156795][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.239757][ T9920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1998'.
[  209.414336][ T9923] lo speed is unknown, defaulting to 1000
[  209.450324][ T9923] lo speed is unknown, defaulting to 1000
[  209.627580][ T9937] loop2: detected capacity change from 0 to 512
[  209.641618][ T9937] EXT4-fs: Ignoring removed orlov option
[  209.648330][ T9937] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  209.648474][ T9939] netlink: 'syz.4.2006': attribute type 1 has an invalid length.
[  209.671606][ T9937] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #15: comm syz.2.2005: corrupted in-inode xattr: e_value size too large
[  209.693326][ T9939] 8021q: adding VLAN 0 to HW filter on device bond1
[  209.708291][ T9939] vlan2: entered promiscuous mode
[  209.713442][ T9939] bond1: entered promiscuous mode
[  209.718594][ T9939] vlan2: entered allmulticast mode
[  209.723759][ T9939] bond1: entered allmulticast mode
[  209.745285][ T9937] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.2005: couldn't read orphan inode 15 (err -117)
[  209.757983][ T9937] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  209.764801][ T9939] bond1: (slave gretap1): making interface the new active one
[  209.778303][ T9939] gretap1: entered promiscuous mode
[  209.783905][ T9939] gretap1: entered allmulticast mode
[  209.790779][ T9939] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  209.826686][ T9954] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9954 comm=syz.3.2011
[  209.839286][ T9954] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9954 comm=syz.3.2011
[  209.867707][ T9956] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2012'.
[  209.871959][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.004568][ T9971] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  210.253633][ T9984] loop2: detected capacity change from 0 to 2048
[  210.323169][ T9986] team0: Port device dummy0 removed
[  210.741487][ T9996] FAULT_INJECTION: forcing a failure.
[  210.741487][ T9996] name failslab, interval 1, probability 0, space 0, times 0
[  210.754247][ T9996] CPU: 1 UID: 0 PID: 9996 Comm: syz.4.2028 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  210.754343][ T9996] Tainted: [W]=WARN
[  210.754349][ T9996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  210.754409][ T9996] Call Trace:
[  210.754417][ T9996]  <TASK>
[  210.754427][ T9996]  __dump_stack+0x1d/0x30
[  210.754455][ T9996]  dump_stack_lvl+0xe8/0x140
[  210.754479][ T9996]  dump_stack+0x15/0x1b
[  210.754515][ T9996]  should_fail_ex+0x265/0x280
[  210.754568][ T9996]  ? alloc_fs_context+0x44/0x4e0
[  210.754597][ T9996]  should_failslab+0x8c/0xb0
[  210.754631][ T9996]  __kmalloc_cache_noprof+0x4c/0x4a0
[  210.754791][ T9996]  alloc_fs_context+0x44/0x4e0
[  210.754820][ T9996]  fs_context_for_mount+0x22/0x30
[  210.754843][ T9996]  do_new_mount+0xea/0x660
[  210.754863][ T9996]  ? security_capable+0x83/0x90
[  210.754966][ T9996]  path_mount+0x4a5/0xb70
[  210.755015][ T9996]  ? user_path_at+0x109/0x130
[  210.755053][ T9996]  __se_sys_mount+0x28c/0x2e0
[  210.755108][ T9996]  ? fput+0x8f/0xc0
[  210.755149][ T9996]  __x64_sys_mount+0x67/0x80
[  210.755179][ T9996]  x64_sys_call+0x2b51/0x3000
[  210.755207][ T9996]  do_syscall_64+0xd2/0x200
[  210.755308][ T9996]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  210.755343][ T9996]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  210.755417][ T9996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.755438][ T9996] RIP: 0033:0x7f480770efc9
[  210.755453][ T9996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.755478][ T9996] RSP: 002b:00007f480616f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  210.755508][ T9996] RAX: ffffffffffffffda RBX: 00007f4807965fa0 RCX: 00007f480770efc9
[  210.755520][ T9996] RDX: 0000200000001440 RSI: 0000200000001400 RDI: 00002000000013c0
[  210.755532][ T9996] RBP: 00007f480616f090 R08: 0000200000000080 R09: 0000000000000000
[  210.755615][ T9996] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[  210.755630][ T9996] R13: 00007f4807966038 R14: 00007f4807965fa0 R15: 00007ffeb0276e58
[  210.755663][ T9996]  </TASK>
[  211.052818][T10006] netlink: 'syz.3.2032': attribute type 142 has an invalid length.
[  211.056580][T10007] loop2: detected capacity change from 0 to 512
[  211.088894][T10007] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.091873][T10006] loop3: detected capacity change from 0 to 1024
[  211.109684][T10011] netlink: 'syz.4.2033': attribute type 1 has an invalid length.
[  211.118248][T10006] EXT4-fs: Ignoring removed orlov option
[  211.147779][T10006] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.168845][T10007] ext4 filesystem being mounted at /430/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.415472][T10021] lo speed is unknown, defaulting to 1000
[  211.478682][T10021] lo speed is unknown, defaulting to 1000
[  211.614188][T10020] netlink: 'syz.1.2035': attribute type 13 has an invalid length.
[  211.896954][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.924963][T10028] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  211.940889][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.972678][T10034] syzkaller0: entered allmulticast mode
[  212.444873][T10047] loop2: detected capacity change from 0 to 128
[  212.932408][T10032] syzkaller0: left allmulticast mode
[  212.962457][T10053] netlink: 'syz.3.2044': attribute type 1 has an invalid length.
[  213.152240][T10059] __nla_validate_parse: 15 callbacks suppressed
[  213.152270][T10059] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2045'.
[  213.167507][T10059] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2045'.
[  213.202617][T10059] loop4: detected capacity change from 0 to 1024
[  213.209630][T10059] EXT4-fs: Ignoring removed orlov option
[  213.273140][T10059] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.703787][T10074] netlink: 260 bytes leftover after parsing attributes in process `syz.2.2047'.
[  213.713748][T10074] netlink: 260 bytes leftover after parsing attributes in process `syz.2.2047'.
[  213.724641][T10075] netlink: 260 bytes leftover after parsing attributes in process `syz.3.2048'.
[  213.734501][T10075] netlink: 260 bytes leftover after parsing attributes in process `syz.3.2048'.
[  213.745220][T10076] validate_nla: 1 callbacks suppressed
[  213.745236][T10076] netlink: 'syz.1.2049': attribute type 142 has an invalid length.
[  213.758766][T10076] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2049'.
[  213.760688][   T29] kauditd_printk_skb: 460 callbacks suppressed
[  213.760704][   T29] audit: type=1400 audit(1760820182.945:7200): avc:  denied  { create } for  pid=10064 comm="syz.0.2046" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  213.815245][   T29] audit: type=1400 audit(1760820182.985:7201): avc:  denied  { write } for  pid=10064 comm="syz.0.2046" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  213.848694][T10076] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2049'.
[  213.858541][T10076] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2049'.
[  214.025226][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.086391][   T29] audit: type=1400 audit(1760820183.265:7202): avc:  denied  { read } for  pid=10079 comm="syz.0.2051" dev="nsfs" ino=4026532393 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  214.108415][   T29] audit: type=1400 audit(1760820183.265:7203): avc:  denied  { open } for  pid=10079 comm="syz.0.2051" path="net:[4026532393]" dev="nsfs" ino=4026532393 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  214.168590][   T29] audit: type=1400 audit(1760820183.345:7204): avc:  denied  { read write } for  pid=10079 comm="syz.0.2051" name="rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  214.193047][   T29] audit: type=1400 audit(1760820183.345:7205): avc:  denied  { open } for  pid=10079 comm="syz.0.2051" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  214.220570][T10083] netlink: 'syz.4.2050': attribute type 142 has an invalid length.
[  214.228595][T10083] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2050'.
[  214.266071][T10083] loop4: detected capacity change from 0 to 1024
[  214.272946][T10083] EXT4-fs: Ignoring removed orlov option
[  214.281382][T10083] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  214.478933][T10083] ==================================================================
[  214.487058][T10083] BUG: KCSAN: data-race in redirty_tail_locked / vfs_fsync_range
[  214.494812][T10083] 
[  214.497145][T10083] read-write to 0xffff88811a4b81a0 of 4 bytes by task 10087 on cpu 0:
[  214.505304][T10083]  redirty_tail_locked+0x56/0x280
[  214.510355][T10083]  writeback_single_inode+0x224/0x3f0
[  214.515749][T10083]  sync_inode_metadata+0x5b/0x90
[  214.520702][T10083]  generic_buffers_fsync_noflush+0xd9/0x120
[  214.526609][T10083]  ext4_sync_file+0x1ab/0x690
[  214.531299][T10083]  vfs_fsync_range+0x10d/0x130
[  214.536094][T10083]  ext4_buffered_write_iter+0x34f/0x3c0
[  214.541657][T10083]  ext4_file_write_iter+0x387/0xf60
[  214.546878][T10083]  iter_file_splice_write+0x666/0xa60
[  214.552260][T10083]  direct_splice_actor+0x156/0x2a0
[  214.557384][T10083]  splice_direct_to_actor+0x312/0x680
[  214.562764][T10083]  do_splice_direct+0xda/0x150
[  214.567539][T10083]  do_sendfile+0x380/0x650
[  214.571981][T10083]  __x64_sys_sendfile64+0x105/0x150
[  214.577198][T10083]  x64_sys_call+0x2bb4/0x3000
[  214.581895][T10083]  do_syscall_64+0xd2/0x200
[  214.586431][T10083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.592336][T10083] 
[  214.594668][T10083] read to 0xffff88811a4b81a0 of 4 bytes by task 10083 on cpu 1:
[  214.602301][T10083]  vfs_fsync_range+0x9b/0x130
[  214.606993][T10083]  ext4_buffered_write_iter+0x34f/0x3c0
[  214.612545][T10083]  ext4_file_write_iter+0x387/0xf60
[  214.617765][T10083]  iter_file_splice_write+0x666/0xa60
[  214.623148][T10083]  direct_splice_actor+0x156/0x2a0
[  214.628274][T10083]  splice_direct_to_actor+0x312/0x680
[  214.633657][T10083]  do_splice_direct+0xda/0x150
[  214.638429][T10083]  do_sendfile+0x380/0x650
[  214.642863][T10083]  __x64_sys_sendfile64+0x105/0x150
[  214.648081][T10083]  x64_sys_call+0x2bb4/0x3000
[  214.652768][T10083]  do_syscall_64+0xd2/0x200
[  214.657283][T10083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.663182][T10083] 
[  214.665510][T10083] value changed: 0x00000072 -> 0x00000002
[  214.671233][T10083] 
[  214.673559][T10083] Reported by Kernel Concurrency Sanitizer on:
[  214.679710][T10083] CPU: 1 UID: 0 PID: 10083 Comm: syz.4.2050 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  214.691091][T10083] Tainted: [W]=WARN
[  214.694895][T10083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  214.704963][T10083] ==================================================================
[  214.741660][T10085] loop0: detected capacity change from 0 to 8192
[  215.039672][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.